What is CVE-2018-2005?

CVE-2018-2005 is a low-severity vulnerability in Ibm Bigfix Platform. CVSS score: 3.3/10. Published 2019-05-20.

How severe is CVE-2018-2005?

Low severity. CVSS v3 base score is 3.3 out of 10.

Vulnerability in Ibm Bigfix Platform

CVE-2018-2005

IBM BigFix Platform 9.2 and 9.5 stores potentially sensitive information in process memory that could be read by a local attacker with elevated permissions. IBM X-Force ID: 155007

EPSS: 0.000 (9.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 3.3 (Low). Vector: CVSS:3.0/AV:L/C:L/PR:L/AC:L/S:U/UI:N/I:N/A:N/E:U/RL:O/RC:C.

Affected products

Ibm Bigfix Platform — versions 9.2, 9.5

References

www.ibm.com/support/docview.wss (x_refsource_CONFIRM)
ibm-bigfix-cve20182005-info-disc (155007) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2018-2005?: CVE-2018-2005 is a low-severity vulnerability in Ibm Bigfix Platform. CVSS score: 3.3/10. Published 2019-05-20.
How severe is CVE-2018-2005?: Low severity. CVSS v3 base score is 3.3 out of 10.