Vulnerability Description
IBM Storwize V7000 Unified (2073) 1.6 configuration may allow an attacker to reveal the server version in default installation, which could be used in further attacks against the system. IBM X-Force ID: 160699.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Storwize Unified V7000 Software | >= 1.6.0.0, <= 1.6.2.5 |
References
- http://www.securityfocus.com/bid/108445Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/160699VDB EntryVendor Advisory
- https://www.ibm.com/support/docview.wss?uid=ibm10884656Vendor Advisory
- http://www.securityfocus.com/bid/108445Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/160699VDB EntryVendor Advisory
- https://www.ibm.com/support/docview.wss?uid=ibm10884656Vendor Advisory
FAQ
What is CVE-2019-4293?
CVE-2019-4293 is a vulnerability with a CVSS score of 5.3 (MEDIUM). IBM Storwize V7000 Unified (2073) 1.6 configuration may allow an attacker to reveal the server version in default installation, which could be used in further attacks against the system. IBM X-Force I...
How severe is CVE-2019-4293?
CVE-2019-4293 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-4293?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Storwize Unified V7000 Software.