{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-30T07:21:11.218","vulnerabilities":[{"cve":{"id":"CVE-2021-20539","sourceIdentifier":"psirt@us.ibm.com","published":"2021-08-02T17:15:13.393","lastModified":"2024-11-21T05:46:44.690","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could disclose sensitive information to an unauthorized user through HTTP GET requests. This information could be used in further attacks against the system. IBM X-Force ID: 198920."},{"lang":"es","value":"IBM Cloud Pak for Security (CP4S) versiones 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0 y 1.7.1.0, podría divulgar información confidencial a un usuario no autorizado mediante peticiones HTTP GET. Esta información podría usarse en otros ataques contra el sistema. IBM X-Force ID: 198920"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV30":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_security:1.5.0.0:*:*:*:*:*:*:*","matchCriteriaId":"43F0280B-81B4-49A1-BE7E-D8476C20E041"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_security:1.5.1.0:*:*:*:*:*:*:*","matchCriteriaId":"ACC07468-AC42-41E7-B255-418144A1197E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_security:1.6.0.0:*:*:*:*:*:*:*","matchCriteriaId":"29021B22-B70A-4278-AB13-92794BB260C4"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_security:1.6.1.0:*:*:*:*:*:*:*","matchCriteriaId":"C4B52E14-2370-4201-8E0D-4225C12E28A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_security:1.7.0.0:*:*:*:*:*:*:*","matchCriteriaId":"BE236FAA-CBC7-49D6-934B-55CA67F0AE95"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cloud_pak_for_security:1.7.1.0:*:*:*:*:*:*:*","matchCriteriaId":"F15C8979-996E-44AE-BDF9-98BA5F1B3C41"}]}]}],"references":[{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/198920","source":"psirt@us.ibm.com","tags":["VDB Entry"]},{"url":"https://www.ibm.com/support/pages/node/6476940","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/198920","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["VDB Entry"]},{"url":"https://www.ibm.com/support/pages/node/6476940","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}