How severe is CVE-2020-4649?

Medium severity. CVSS v3 base score is 4.3 out of 10.

Vulnerability in Ibm Planning Analytics Local

CVE-2020-4649

IBM Planning Analytics Local 2.0.9.2 and IBM Planning Analytics Workspace 57 could expose data to non-privleged users by not invalidating TM1Web user sessions. IBM X-Force ID: 186022.

EPSS: 0.002 (36.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.0/C:L/S:U/AV:N/A:N/I:N/PR:L/UI:N/AC:L/RL:O/RC:C/E:U.

Affected products

Ibm Planning Analytics Local — versions 2.0.9.2
Ibm Planning Analytics Workspace — versions 57

References

www.ibm.com/support/pages/node/6356539 (x_refsource_CONFIRM)
ibm-planning-cve20204649-info-disc (186022) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2020-4649?: CVE-2020-4649 is a medium-severity vulnerability in Ibm Planning Analytics Local. CVSS score: 4.3/10. Published 2020-11-03.
How severe is CVE-2020-4649?: Medium severity. CVSS v3 base score is 4.3 out of 10.