CVE-2019-4234

IBM PureApplication System 2.2.3.0 through 2.2.5.3 weakness in the implementation of locking feature in pattern editor. An attacker by intercepting the subsequent requests can bypass business logic to modify the pattern to unlocked state. IBM X-Force ID: 159416.

Published: Jun 26, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-4234
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.3
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ibm / pureapplication_system	2.2.3.0	2.2.5.3.x

https://exchange.xforce.ibmcloud.com/vulnerabilities/159416
https://www-01.ibm.com/support/docview.wss?uid=ibm10885602

Vulnerability Database

289,599

CVE-2019-4234