First published: Wed Nov 06 2019(Updated: )
IBM SmartCloud Analytics 1.3.1 through 1.3.5 allows unauthorized disclosure of information like accessing solrconfig.xml and could allow an attacker to perform disruptive administrator tasks. IBM X-Force ID: 159517.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM SmartCloud Analytics Log Analysis | >=1.3.1<=1.3.5 | |
<=1.3.1 | ||
<=1.3.2 | ||
<=1.3.3 | ||
<=1.3.4 | ||
<=1.3.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2019-4243 is medium with a CVSS score of 5.1.
CVE-2019-4243 allows unauthorized disclosure of information by allowing an attacker to access solrconfig.xml.
An attacker could perform disruptive administrator tasks with CVE-2019-4243.
IBM SmartCloud Analytics versions 1.3.1 through 1.3.5 are affected by CVE-2019-4243.
To fix CVE-2019-4243, apply the necessary security patches or updates provided by IBM.