CVE-2018-1950: Infoleak
First published: Mon Feb 18 2019(Updated: )
IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance generates an error message that includes sensitive information about its environment, users, or associated data which could be used in further attacks against the system. IBM X-Force ID: 153430.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Security Identity Governance and Intelligence | >=5.2<=5.2.4.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-1950?
CVE-2018-1950 is a vulnerability found in IBM Security Identity Governance and Intelligence Virtual Appliance versions 5.2 through 5.2.4.1.
What is the severity of CVE-2018-1950?
The severity of CVE-2018-1950 is medium with a CVSS score of 4.3.
What is the impact of CVE-2018-1950?
CVE-2018-1950 can disclose sensitive information about the system, users, and associated data, which can be used in further attacks.
How can I fix CVE-2018-1950?
To fix CVE-2018-1950, it is recommended to upgrade to a version higher than 5.2.4.1 of IBM Security Identity Governance and Intelligence Virtual Appliance.
Where can I find more information about CVE-2018-1950?
You can find more information about CVE-2018-1950 in the IBM X-Force Exchange and the IBM Support website.
- collector/nvd-index
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/author
- agent/last-modified-date
- agent/remedy
- agent/type
- agent/softwarecombine
- agent/tags
- agent/event
- agent/first-publish-date
- agent/description
- vendor/ibm
- canonical/ibm security identity governance and intelligence
- version/ibm security identity governance and intelligence/5.2
- version/ibm security identity governance and intelligence/5.2.4.1