CVE-2019-4246 — IBM Daeja Viewone vulnerability

4 documents4 sources

Severity

5.3MEDIUMNVD

EPSS

0.2%

top 62.74%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Daeja Viewone IBM Daeja Viewone Virtual

Timeline

PublishedOct 1

Latest updateMay 24

Description

IBM Daeja ViewONE Virtual 5.0 through 5.0.6 could expose internal parameters to ViewONE clients that could be used in further attacks against the system. IBM X-Force ID: 159521.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

▶CVEListV5ibm/daeja_viewone_virtual5.0, 5.0.6+1

▶NVDibm/daeja_viewone5.0 — 5.0.6

Patches

Patch: www.ibm.com ↗Patch: www.ibm.com ↗

🔴Vulnerability Details

GHSA

GHSA-7fhh-6v34-9fp2: IBM Daeja ViewONE Virtual 5↗2022-05-24

▶

CVEList

CVE-2019-4246: IBM Daeja ViewONE Virtual 5↗2019-10-01

▶

💬Community

Bugzilla

CVE-2019-12594 dosbox: running a malicious executable in the emulator could result in the execution of arbitrary code↗2019-07-11

▶