How severe is CVE-2017-1474?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Ibm Security Access Manager

CVE-2017-1474

IBM Security Access Manager Appliance 7.0.0, 8.0.0 through 8.0.1.6, and 9.0.0 through 9.0.3.1 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 128606.

EPSS: 0.002 (40.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.0/A:N/AC:L/AV:N/C:L/I:N/PR:N/S:U/UI:N/E:U/RC:C/RL:O.

Affected products

Ibm Security Access Manager — versions 8.0.1.2, 8.0.1.6, 8.0.0.4

References

ibm-sam-cve20171474-info-disc(128606) (vdb-entry, x_refsource_XF)
www.ibm.com/support/docview.wss (x_refsource_CONFIRM)
104476 (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2017-1474?: CVE-2017-1474 is a medium-severity vulnerability in Ibm Security Access Manager. CVSS score: 5.3/10. Published 2018-06-06.
How severe is CVE-2017-1474?: Medium severity. CVSS v3 base score is 5.3 out of 10.