CVE-2019-4051

medium

Description

Some URIs in IBM API Connect 2018.1 and 2018.4.1.3 disclose system specification information like the machine id, system uuid, filesystem paths, network interface names along with their mac addresses. An attacker can use this information in targeted attacks. IBM X-Force ID: 156542.

References

https://www.ibm.com/support/docview.wss?uid=ibm10879395

https://exchange.xforce.ibmcloud.com/vulnerabilities/156542

http://www.securityfocus.com/bid/107841

Details

Source: Mitre, NVD

Published: 2019-04-08

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 5.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Severity: Medium

EPSS

EPSS: 0.00202