CVE-2018-1999 MEDIUM

CVE-2018-1999

Vendor Ibm
Product Business Automation Workflow
Published April 8, 2019
Last update September 16, 2024

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.0/AV:N/S:U/UI:N/AC:L/C:L/PR:L/A:N/I:N/RC:C/E:U/RL:O

What the vulnerability does

01Description

IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, and 18.0.0.2 could reveal sensitive version information about the server from error pages that could aid an attacker in further attacks against the system. IBM X-Force ID: 154889.

Key dates

02Disclosure timeline

April 8, 2019 CVE published
September 16, 2024 Record updated