Unrated severityNVD Advisory· Published Jan 7, 2021· Updated Sep 17, 2024
CVE-2020-4897
CVE-2020-4897
Description
IBM Emptoris Contract Management and IBM Emptoris Spend Analysis 10.1.0, 10.1.1, and 10.1.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 190988.
Affected products
4>=10.1.0, <=10.1.3+ 1 more
- (no CPE)range: >=10.1.0, <=10.1.3
- (no CPE)range: 10.1.0
>=10.1.0, <=10.1.3+ 1 more
- (no CPE)range: >=10.1.0, <=10.1.3
- (no CPE)range: 10.1.0
Patches
Vulnerability mechanics
References
3- exchange.xforce.ibmcloud.com/vulnerabilities/190988mitrevdb-entryx_refsource_XF
- www.ibm.com/support/pages/node/6398276mitrex_refsource_CONFIRM
- www.ibm.com/support/pages/node/6398280mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.