CVE-2014-4822

IBM WebSphere MQ classes for Java libraries 8.0 before 8.0.0.1 and Websphere MQ Explorer 7.5 before 7.5.0.5 and 8.0 before 8.0.0.2 allow local users to discover preconfigured cleartext passwords via an unspecified trace operation.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
1.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
ibmwebsphere_mq
8.0.0.0
ibmwebsphere_mq_explorer
7.5.0.0
ibmwebsphere_mq_explorer
7.5.0.1
ibmwebsphere_mq_explorer
7.5.0.2
ibmwebsphere_mq_explorer
7.5.0.3
ibmwebsphere_mq_explorer
7.5.0.4
ibmwebsphere_mq_explorer
8.0.0.0
ibmwebsphere_mq_explorer
8.0.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/59921
http://www-01.ibm.com/support/docview.wss?uid=swg1IT04023
http://www-01.ibm.com/support/docview.wss?uid=swg21686339
https://exchange.xforce.ibmcloud.com/vulnerabilities/95467
http://secunia.com/advisories/59921
http://www-01.ibm.com/support/docview.wss?uid=swg1IT04023
http://www-01.ibm.com/support/docview.wss?uid=swg21686339
https://exchange.xforce.ibmcloud.com/vulnerabilities/95467