CVE-2019-4072 Information
Feb 14, 2021
cve
Description
IBM Tivoli Storage Productivity Center (IBM Spectrum Control Standard Edition 5.2.1 through 5.2.17) allows users to remain idle within the application even when a user has logged out. Utilizing the application back button users can remain logged in as the current user for a short period of time therefore users are presented with information for Spectrum Control Application. IBM X-Force ID: 157064.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Reference
http://www.ibm.com/support/docview.wss?uid=ibm10873036 https://exchange.xforce.ibmcloud.com/vulnerabilities/157064
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
LOW
Availability Impact
LOW
Base Score
LOW
Base Severity
6.3
Share on: