CVE-2020-4171
Description
IBM Security Guardium Insights 2.0.1 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 174407.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
IBM Security Guardium Insights 2.0.1 stores web pages locally, allowing another user on the system to read them, leading to information disclosure.
Vulnerability
IBM Security Guardium Insights version 2.0.1 stores web pages locally on the system. This allows another user on the same system to read those stored web pages, potentially exposing sensitive information. The vulnerability is identified as CVE-2020-4171 and is documented in the IBM security bulletin [1].
Exploitation
An attacker with local access to the system where Guardium Insights is installed can read the stored web pages. No special privileges are required beyond being a user on the system. The attacker can simply access the local file system where the web pages are stored.
Impact
Successful exploitation allows an attacker to read locally stored web pages, which may contain sensitive information such as configuration details, user data, or other confidential content. This leads to information disclosure, compromising confidentiality.
Mitigation
IBM has addressed this vulnerability in a security update. Users should apply the latest patches as provided in the IBM security bulletin [1]. The fixed version is not explicitly stated in the available reference, but the bulletin indicates that the issue has been resolved.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: = 2.0.1
- Range: 2.0.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- exchange.xforce.ibmcloud.com/vulnerabilities/174407mitrevdb-entryx_refsource_XF
- www.ibm.com/support/pages/node/6323297mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.