CVE-2019-4284
published 2019-08-05CVE-2019-4284: IBM Cloud Private 2.1.0 , 3.1.0, 3.1.1, and 3.1.2 could allow a local privileged user to obtain sensitive OIDC token that is printed to log files, which could…
medium4.4CVSS 3.1
AVLACLPRHUINSUCHINAN
IBM Cloud Private 2.1.0 , 3.1.0, 3.1.1, and 3.1.2 could allow a local privileged user to obtain sensitive OIDC token that is printed to log files, which could be used to log in to the system as another user. IBM X-Force ID: 160512.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | cloud_private | — | — |
| ibm | cloud_private | — | — |
| ibm | cloud_private | — | — |
| ibm | cloud_private | — | — |
| ibm | cloud_private | 2.1.0 – 2.1.0.3 | — |