CVE-2020-4584
First published: Thu Oct 29 2020(Updated: )
IBM i2 iBase 8.9.13 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 184574.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM i2 iBase | <=8.9.13 | |
| <=All | ||
| <=8.9.13 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this IBM i2 iBase vulnerability?
The vulnerability ID for this IBM i2 iBase vulnerability is CVE-2020-4584.
What is the severity of CVE-2020-4584?
This vulnerability has a severity rating of 7.5 (high).
How does the vulnerability in IBM i2 iBase 8.9.13 occur?
The vulnerability in IBM i2 iBase 8.9.13 occurs when a detailed technical error message is returned in the browser.
What is the potential impact of this vulnerability?
This vulnerability could allow a remote attacker to obtain sensitive information, which could be used in further attacks against the system.
Is there any fix available for this vulnerability?
For information on how to fix this vulnerability, refer to the IBM support page provided in the references.
- collector/nvd-index
- agent/references
- agent/first-publish-date
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/remedy
- agent/weakness
- agent/last-modified-date
- agent/description
- agent/softwarecombine
- agent/event
- agent/tags
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- vendor/ibm
- canonical/ibm i2 ibase
- version/ibm i2 ibase/8.9.13
- version/ibm i2 ibase/all