CVE-2014-4819

EUVD-2014-4738
The web user interface in IBM WebSphere Message Broker 8.0 before 8.0.0.6 and IBM Integration Bus 9.0 before 9.0.0.3 allows remote authenticated users to obtain sensitive information by reading the error page.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 49%
Affected Products (NVD)
VendorProductVersion
ibmwebsphere_message_broker
8.0
ibmwebsphere_message_broker
8.0.0.1
ibmwebsphere_message_broker
8.0.0.2
ibmwebsphere_message_broker
8.0.0.3
ibmwebsphere_message_broker
8.0.0.4
ibmwebsphere_message_broker
8.0.0.5
ibmintegration_bus
9.0
ibmintegration_bus
9.0.0.1
ibmintegration_bus
9.0.0.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/61356
http://www-01.ibm.com/support/docview.wss?uid=swg1IT03097
http://www-01.ibm.com/support/docview.wss?uid=swg21682681
https://exchange.xforce.ibmcloud.com/vulnerabilities/95456
http://secunia.com/advisories/61356
http://www-01.ibm.com/support/docview.wss?uid=swg1IT03097
http://www-01.ibm.com/support/docview.wss?uid=swg21682681
https://exchange.xforce.ibmcloud.com/vulnerabilities/95456