CVE-2020-4893

IBM Emptoris Strategic Supply Management 10.1.0, 10.1.1, and 10.1.3 transmits sensitive information in HTTP GET request parameters. This may lead to information disclosure via man in the middle methods. IBM X-Force ID: 190984.
References
Configurations

Configuration 1

cpe:2.3:a:ibm:emptoris_strategic_supply_management:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:emptoris_strategic_supply_management:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:emptoris_strategic_supply_management:*:*:*:*:*:*:*:*

Information

Published : 2021-01-07 06:15

Updated : 2021-01-08 07:56


NVD link : CVE-2020-4893

Mitre link : CVE-2020-4893

Products Affected
No products.
CWE
CWE-319

Cleartext Transmission of Sensitive Information