Summaryinfo

A vulnerability was found in IBM i2 Analyze 4.3.0/4.3.1/4.3.2. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to information exposure. This vulnerability was named CVE-2021-29784. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Detailsinfo

A vulnerability was found in IBM i2 Analyze 4.3.0/4.3.1/4.3.2. It has been classified as problematic. This affects an unknown function. The manipulation with an unknown input leads to a information exposure vulnerability. CWE is classifying the issue as CWE-209. The product generates an error message that includes sensitive information about its environment, users, or associated data. This is going to have an impact on confidentiality.

The weakness was published 07/26/2021. It is possible to read the advisory at ibm.com. This vulnerability is uniquely identified as CVE-2021-29784. The technical details are unknown and an exploit is not publicly available. The attack technique deployed by this issue is T1592 according to MITRE ATT&CK.

Upgrading eliminates this vulnerability.

The vulnerability is also documented in the vulnerability database at X-Force (203168). Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Productinfo

Vendor

• IBM

Name

• i2 Analyze

Version

• 4.3.0
• 4.3.1
• 4.3.2

License

• commercial

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion