CVE-2017-1370

IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could disclose sensitive information, including user credentials, through an error message…

ibm·CWE-209·Published 2017-07-31

CVSS

—

EPSS

0.01

KEV

Exploits

cve.orgen

217 chars

IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could disclose sensitive information, including user credentials, through an error message from the Report Builder administrator configuration page. IBM X-Force ID: 126863.

NVDen

217 chars

NVDes

261 chars

IBM Jazz Reporting Service (JRS) versiones 5.0 y 6.0, podría revelar información confidencial, incluyendo las credenciales de usuario, por medio de un mensaje de error de la página de configuración del administrador de Report Builder. ID de IBM X-Force: 126863.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.0	8.0	2.9	AV:N/AC:L/Au:S/C:P/I:N/A:N
3.0	Primary	NVD	4.9	1.2	3.6	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N