CVE-2014-4819

The web user interface in IBM WebSphere Message Broker 8.0 before 8.0.0.6 and IBM Integration Bus 9.0 before 9.0.0.3 allows remote authenticated users to obtain sensitive information by reading the error page.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:websphere_message_broker:8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_message_broker:8.0.0.5:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:ibm:integration_bus:9.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:integration_bus:9.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:integration_bus:9.0.0.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-09-18 10:55

Updated : 2024-02-04 18:35


NVD link : CVE-2014-4819

Mitre link : CVE-2014-4819

CVE.ORG link : CVE-2014-4819


JSON object : View

Products Affected

ibm

  • integration_bus
  • websphere_message_broker
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor