CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-4234

IBM PureApplication System 2.2.3.0 through 2.2.5.3 weakness in the implementation of locking feature in pattern editor. An attacker by intercepting the subsequent requests can bypass business logic to modify the pattern to unlocked state. IBM X-Force ID: 159416.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.2%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.0

References

Products affected by CVE-2019-4234

Ibm » Pureapplication System » Version: 2.2.3.0

cpe:2.3:a:ibm:pureapplication_system:2.2.3.0
Ibm » Pureapplication System » Version: 2.2.3.1

cpe:2.3:a:ibm:pureapplication_system:2.2.3.1
Ibm » Pureapplication System » Version: 2.2.3.2

cpe:2.3:a:ibm:pureapplication_system:2.2.3.2
Ibm » Pureapplication System » Version: 2.2.4.0

cpe:2.3:a:ibm:pureapplication_system:2.2.4.0
Ibm » Pureapplication System » Version: 2.2.5.0

cpe:2.3:a:ibm:pureapplication_system:2.2.5.0
Ibm » Pureapplication System » Version: 2.2.5.1

cpe:2.3:a:ibm:pureapplication_system:2.2.5.1
Ibm » Pureapplication System » Version: 2.2.5.2

cpe:2.3:a:ibm:pureapplication_system:2.2.5.2
Ibm » Pureapplication System » Version: 2.2.5.3

cpe:2.3:a:ibm:pureapplication_system:2.2.5.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-4234

Products

Pricing

Contact Us