CVE-2014-4822

IBM WebSphere MQ classes for Java libraries 8.0 before 8.0.0.1 and Websphere MQ Explorer 7.5 before 7.5.0.5 and 8.0 before 8.0.0.2 allow local users to discover preconfigured cleartext passwords via an unspecified trace operation.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
1.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:N/A:N
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 15%
VendorProductVersion
ibmwebsphere_mq
8.0.0.0
ibmwebsphere_mq_explorer
7.5.0.0
ibmwebsphere_mq_explorer
7.5.0.1
ibmwebsphere_mq_explorer
7.5.0.2
ibmwebsphere_mq_explorer
7.5.0.3
ibmwebsphere_mq_explorer
7.5.0.4
ibmwebsphere_mq_explorer
8.0.0.0
ibmwebsphere_mq_explorer
8.0.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/59921
http://www-01.ibm.com/support/docview.wss?uid=swg1IT04023
http://www-01.ibm.com/support/docview.wss?uid=swg21686339
https://exchange.xforce.ibmcloud.com/vulnerabilities/95467
http://secunia.com/advisories/59921
http://www-01.ibm.com/support/docview.wss?uid=swg1IT04023
http://www-01.ibm.com/support/docview.wss?uid=swg21686339
https://exchange.xforce.ibmcloud.com/vulnerabilities/95467