CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-4835

IBM ServerGuide before 9.63, UpdateXpress System Packs Installer (UXSPI) before 9.63, and ToolsCenter Suite before 9.63 place credentials in logs, which allows local users to obtain sensitive information by reading a file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.4%

CVSS Severity

CVSS v2 Score 2.1

References

http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096777
https://exchange.xforce.ibmcloud.com/vulnerabilities/95629
http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096777
https://exchange.xforce.ibmcloud.com/vulnerabilities/95629

Products affected by CVE-2014-4835

Ibm » Serverguide » Version: 9.60

cpe:2.3:a:ibm:serverguide:9.60
Ibm » Toolscenter Suite » Version: 9.60

cpe:2.3:a:ibm:toolscenter_suite:9.60
Ibm » Updatexpress System Packs Installer » Version: 9.60

cpe:2.3:a:ibm:updatexpress_system_packs_installer:9.60

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-4835

Products

Pricing

Contact Us