CVE-2016-0203: Infoleak
First published: Wed Feb 08 2017(Updated: )
A vulnerability has been identified in the IBM Cloud Orchestrator task API. The task API might allow an authenticated user to view background information associated with actions performed on virtual machines in projects where the user belongs to.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Cloud Orchestrator | =2.4 | |
| IBM Cloud Orchestrator | =2.4.0.1 | |
| IBM Cloud Orchestrator | =2.4.0.2 | |
| IBM Cloud Orchestrator | =2.4.0.3 | |
| IBM Cloud Orchestrator | =2.5 | |
| IBM Cloud Orchestrator | =2.5.01 | |
| Ibm Smartcloud Orchestrator | =2.3 | |
| Ibm Smartcloud Orchestrator | =2.3.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/event
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm cloud orchestrator
- version/ibm cloud orchestrator/2.4
- version/ibm cloud orchestrator/2.4.0.1
- version/ibm cloud orchestrator/2.4.0.2
- version/ibm cloud orchestrator/2.4.0.3
- version/ibm cloud orchestrator/2.5
- version/ibm cloud orchestrator/2.5.01
- canonical/ibm smartcloud orchestrator
- version/ibm smartcloud orchestrator/2.3
- version/ibm smartcloud orchestrator/2.3.0.1