Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-4067

IBM Intelligent Operations Center (IOC) 5.1.0 through 5.2.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 157012.

Published

2019-06-07T15:29:01.577

Last Modified

2024-11-21T04:43:06.903

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-521

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ibm	intelligent_operations_center	≤ 5.2.0	Yes
Application	ibm	intelligent_operations_center_for_emergency_management	≤ 5.1.0.6	Yes
Application	ibm	water_operations_for_waternamics	≤ 5.2.1.1	Yes

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/157012 VDB Entry, Vendor Advisory ([email protected])
https://www.ibm.com/support/docview.wss?uid=ibm10880213 Vendor Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/157012 VDB Entry, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/docview.wss?uid=ibm10880213 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)