CVE-2021-20551

CWE-668Exposure to Wrong Sphere3 documents3 sources
Severity
3.3LOW
EPSS
0.0%
top 87.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Jazz Team Server
Timeline
PublishedJun 24
Latest updateJun 25

Description

IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 199149.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/jazz_team_server5 versions+4
NVDibm/jazz_team_server5 versions+4

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-g3xw-9j5v-qg2m: IBM Jazz Team Server 62022-06-25
CVEList
CVE-2021-20551: IBM Jazz Team Server 62022-06-24
CVE-2021-20551 (LOW CVSS 3.3) | IBM Jazz Team Server 6.0.6 | cvebase.io