CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-20358
https://notcve.org/view.php?id=CVE-2021-20358
08 Feb 2021 — IBM Cloud Pak for Automation 20.0.3, 20.0.2-IF002 stores potentially sensitive information in clear text in API connection log files. This information could be obtained by a user with permissions to read log files. IBM X-Force ID: 194965. IBM Cloud Pak for Automation versiones 20.0.3, 20.0.2-IF002, almacena información potencialmente confidencial en texto sin cifrar en archivos de registro de conexión de la API. Esta información puede ser obtenida por un usuario con permisos para leer archivos de regis... • https://exchange.xforce.ibmcloud.com/vulnerabilities/194965 • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4325
https://notcve.org/view.php?id=CVE-2020-4325
02 Apr 2020 — The IBM Process Federation Server 18.0.0.1, 18.0.0.2, 19.0.0.1, 19.0.0.2, and 19.0.0.3 Global Teams REST API does not properly shutdown the thread pools that it creates to retrieve Global Teams information from the federated systems. As a consequence, the Java Virtual Machine can't recover the memory used by those thread pools, which leads to an OutOfMemory exception when the Process Federation Server Global Teams REST API is used extensively. IBM X-Force ID: 177596. La API REST de Global Teams del IBM Proc... • https://exchange.xforce.ibmcloud.com/vulnerabilities/177596 • CWE-404: Improper Resource Shutdown or Release •