CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-1198

IBM BigFix Compliance 1.7 through 1.9.91 (TEMA SUAv1 SCA SCM) stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 123673.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 64.0%

CVSS Severity

CVSS v3 Score 3.7

CVSS v2 Score 5.0

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/123673
https://www-01.ibm.com/support/docview.wss?uid=ibm10737581
https://exchange.xforce.ibmcloud.com/vulnerabilities/123673
https://www-01.ibm.com/support/docview.wss?uid=ibm10737581

Products affected by CVE-2017-1198

Ibm » Bigfix Compliance » Version: 1.7

cpe:2.3:a:ibm:bigfix_compliance:1.7
Ibm » Bigfix Compliance » Version: 1.8

cpe:2.3:a:ibm:bigfix_compliance:1.8
Ibm » Bigfix Compliance » Version: 1.9.91

cpe:2.3:a:ibm:bigfix_compliance:1.9.91

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-1198

Products

Pricing

Contact Us