CVE-2020-4953: Infoleak
First published: Mon Feb 22 2021(Updated: )
IBM Planning Analytics 2.0 could allow a remote authenticated attacker to obtain information about an organization's internal structure by exposing sensitive information in HTTP repsonses. IBM X-Force ID: 192029.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Planning Analytics | =2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2020-4953.
What is the severity level of CVE-2020-4953?
CVE-2020-4953 has a severity level of medium.
How does CVE-2020-4953 impact IBM Planning Analytics Workspace?
CVE-2020-4953 allows a remote authenticated attacker to obtain information about an organization's internal structure by exposing sensitive information in HTTP responses.
Which version of IBM Planning Analytics is affected by CVE-2020-4953?
IBM Planning Analytics version 2.0 is affected by CVE-2020-4953.
Are there any references available for CVE-2020-4953?
Yes, you can find references for CVE-2020-4953 at the following links: [Link](https://exchange.xforce.ibmcloud.com/vulnerabilities/192029) and [Link](https://www.ibm.com/support/pages/node/6412707).
- collector/nvd-index
- agent/references
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- collector/ibm-support
- source/IBM
- agent/severity
- agent/weakness
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/author
- agent/description
- agent/tags
- agent/event
- vendor/ibm
- canonical/ibm planning analytics
- version/ibm planning analytics/2.0