Vulnerability Details CVE-2014-4819
The web user interface in IBM WebSphere Message Broker 8.0 before 8.0.0.6 and IBM Integration Bus 9.0 before 9.0.0.3 allows remote authenticated users to obtain sensitive information by reading the error page.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.7%
CVSS Severity
CVSS v2 Score 4.0
References
- http://secunia.com/advisories/61356
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT03097
- http://www-01.ibm.com/support/docview.wss?uid=swg21682681
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95456
- http://secunia.com/advisories/61356
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT03097
- http://www-01.ibm.com/support/docview.wss?uid=swg21682681
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95456
Products affected by CVE-2014-4819
-
cpe:2.3:a:ibm:integration_bus:9.0
-
cpe:2.3:a:ibm:integration_bus:9.0.0.1
-
cpe:2.3:a:ibm:integration_bus:9.0.0.2
-
cpe:2.3:a:ibm:websphere_message_broker:8.0
-
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.1
-
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.2
-
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.3
-
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.4
-
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.5