CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-0946

The RES Console in Rule Execution Server in IBM Operational Decision Manager 7.5 before FP3 IF37, 8.0 before MP1 FP2, and 8.5 before MP1 IF26 does not send appropriate Cache-Control HTTP headers, which allows remote attackers to obtain sensitive information by leveraging an unattended workstation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.2%

CVSS Severity

CVSS v2 Score 4.3

References

http://www-01.ibm.com/support/docview.wss?uid=swg21671324
https://exchange.xforce.ibmcloud.com/vulnerabilities/92573
http://www-01.ibm.com/support/docview.wss?uid=swg21671324
https://exchange.xforce.ibmcloud.com/vulnerabilities/92573

Products affected by CVE-2014-0946

Ibm » Operational Decision Manager » Version: 7.5

cpe:2.3:a:ibm:operational_decision_manager:7.5
Ibm » Operational Decision Manager » Version: 8.0

cpe:2.3:a:ibm:operational_decision_manager:8.0
Ibm » Operational Decision Manager » Version: 8.5

cpe:2.3:a:ibm:operational_decision_manager:8.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-0946

Products

Pricing

Contact Us