CVE-2016-0203

A vulnerability has been identified in the IBM Cloud Orchestrator task API. The task API might allow an authenticated user to view background information associated with actions performed on virtual machines in projects where the user belongs to.
References
Link Resource
http://www.ibm.com/support/docview.wss?uid=swg2C1000140 Patch Vendor Advisory
http://www.securityfocus.com/bid/94440 Third Party Advisory VDB Entry
http://www.ibm.com/support/docview.wss?uid=swg2C1000140 Patch Vendor Advisory
http://www.securityfocus.com/bid/94440 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:cloud_orchestrator:2.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_orchestrator:2.4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_orchestrator:2.4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_orchestrator:2.4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_orchestrator:2.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_orchestrator:2.5.01:*:*:*:*:*:*:*
cpe:2.3:a:ibm:smartcloud_orchestrator:2.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:smartcloud_orchestrator:2.3.0.1:*:*:*:*:*:*:*

History

21 Nov 2024, 02:41

Type Values Removed Values Added
References () http://www.ibm.com/support/docview.wss?uid=swg2C1000140 - Patch, Vendor Advisory () http://www.ibm.com/support/docview.wss?uid=swg2C1000140 - Patch, Vendor Advisory
References () http://www.securityfocus.com/bid/94440 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/94440 - Third Party Advisory, VDB Entry

Information

Published : 2017-02-08 22:59

Updated : 2024-11-21 02:41


NVD link : CVE-2016-0203

Mitre link : CVE-2016-0203

CVE.ORG link : CVE-2016-0203


JSON object : View

Products Affected

ibm

  • smartcloud_orchestrator
  • cloud_orchestrator
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor