CVE-2020-4341
published 2020-06-24CVE-2020-4341: IBM Security Secret Server 10.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the…
medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
IBM Security Secret Server 10.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 178181.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | security_secret_server | < 10.8 | 10.8 |
| ibm | security_secret_server | — | — |
| samba | samba | >= 0 < 2:4.3.11+dfsg-0ubuntu0.16.04.27 | 2:4.3.11+dfsg-0ubuntu0.16.04.27 |
| samba | samba | >= 0 < 2:4.3.11+dfsg-0ubuntu0.14.04.20+esm6 | 2:4.3.11+dfsg-0ubuntu0.14.04.20+esm6 |
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
osv7.5HIGH