CVE-2020-4908
MEDIUMIBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 - Information Exposure via Login Dialog
Title source: llmDescription
IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 returns the product version and release information on the login dialog. This information could be used in further attacks against the system.
References (2)
Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/pages/node/6371260
VDB Entry, Vendor Advisory vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/191113
Scores
CVSS v3
5.3
EPSS
0.0105
EPSS Percentile
60.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (1)
ibm/financial_transaction_manager_for_multiplatform
3.2.4
Published
Dec 16, 2020
Tracked Since
Feb 18, 2026