Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in tasks, backend object generated for handling any action performed by the application in IBM Cloud Orchestrator. It is possible for an authenticated user to view any task of the current users domain.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Cloud Orchestrator 信息泄露漏洞
Vulnerability Description
IBM Cloud Orchestrator是美国IBM公司的一套为IT服务提供云管理、加快软件与基础架构交付的解决方案。该方案提供扩展内部和外部部署云服务以及应用程序接口和工具扩展与现有环境集成等功能。 IBM Cloud Orchestrator 2.3和2.3.0.1版本和2.4至2.4.0.3版本的View All User Domain Tasks中存在信息泄露漏洞。本地攻击者可利用该漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A