IBM i 7.27.3 Clustering Local Information Disclosure Vulnerability

IBM i 7.27.3 Clustering Local Information Disclosure Vulnerability

CVE-2019-4381 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

IBM i 7.27.3 Clustering could allow a local attacker to obtain sensitive information, caused by the use of advanced node failure detection using the REST API to interface with the HMC. An attacker could exploit this vulnerability to obtain HMC credentials. IBM X-Force ID: 162159.

Learn more about our Api Penetration Testing.