Vulnerability Details CVE-2014-4819
The web user interface in IBM WebSphere Message Broker 8.0 before 8.0.0.6 and IBM Integration Bus 9.0 before 9.0.0.3 allows remote authenticated users to obtain sensitive information by reading the error page.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.8%
CVSS Severity
CVSS v2 Score 4.0
References
- http://secunia.com/advisories/61356
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT03097
- http://www-01.ibm.com/support/docview.wss?uid=swg21682681
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95456
- http://secunia.com/advisories/61356
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT03097
- http://www-01.ibm.com/support/docview.wss?uid=swg21682681
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95456
Products affected by CVE-2014-4819
-
cpe:2.3:a:ibm:integration_bus:9.0
-
cpe:2.3:a:ibm:integration_bus:9.0.0.1
-
cpe:2.3:a:ibm:integration_bus:9.0.0.2
-
cpe:2.3:a:ibm:websphere_message_broker:8.0
-
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.1
-
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.2
-
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.3
-
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.4
-
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.5