{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T06:47:17.593","vulnerabilities":[{"cve":{"id":"CVE-2019-4173","sourceIdentifier":"psirt@us.ibm.com","published":"2019-06-17T15:15:12.520","lastModified":"2024-11-21T04:43:16.767","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 could allow a remote attacker to obtain sensitive information, caused by a flaw in the HTTP OPTIONS method, aka Optionsbleed. By sending an OPTIONS HTTP request, a remote attacker could exploit this vulnerability to read secret data from process memory and obtain sensitive information. IBM X-Force ID: 158878."},{"lang":"es","value":"IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1 y 10.4.0 podría permitirle a un atacante remoto obtener información confidencial, causada por un fallo en el método de HTTP OPTIONS, también conocido como Opcionesbleed. Al enviar una solicitud HTTP OPTIONS, un atacante remoto podría aprovechar esta vulnerabilidad para leer datos secretos de la memoria de proceso y obtener información confidencial. ID de IBM X-Force: 158878."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV30":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_controller:10.2.0:*:*:*:*:*:*:*","matchCriteriaId":"C5E51AA2-19DE-4FC5-A126-ACA169942521"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_controller:10.2.1:*:*:*:*:*:*:*","matchCriteriaId":"2A39451D-1A06-4082-99E9-C86DBA797050"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_controller:10.3.0:*:*:*:*:*:*:*","matchCriteriaId":"7B9021EE-6BDF-4722-A7EA-E984A21684A7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_controller:10.3.1:*:*:*:*:*:*:*","matchCriteriaId":"F544128B-455B-4485-A98F-4DB751925B36"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_controller:10.4.0:*:*:*:*:*:*:*","matchCriteriaId":"8284ECE5-3938-47B2-99B6-6D3B9ECB8C82"}]}]}],"references":[{"url":"http://www.ibm.com/support/docview.wss?uid=ibm10886913","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/158878","source":"psirt@us.ibm.com","tags":["VDB Entry","Vendor Advisory"]},{"url":"http://www.ibm.com/support/docview.wss?uid=ibm10886913","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/158878","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["VDB Entry","Vendor Advisory"]}]}}]}