CVE-2020-4913

MEDIUM

IBM Cloud Pak System < 2.3.3.3 - Information Disclosure

Title source: rule

Description

IBM Cloud Pak System 2.3 could reveal credential information in the HTTP response to a local privileged user. IBM X-Force ID: 191288.

References (2)

Scores

CVSS v3 4.4
EPSS 0.0004
EPSS Percentile 13.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Classification

CWE
CWE-522 CWE-200
Status published

Affected Products (1)

ibm/cloud_pak_system < 2.3.3.3

Timeline

Published Jan 04, 2021
Tracked Since Feb 18, 2026