Lucene search
HistoryApr 10, 2014 - 11:55 p.m.
CVE-2014-0920
ibm spss analytic server
security vulnerability
cleartext passwords
remote authentication
sensitive information
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
5.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
46.4%
IBM SPSS Analytic Server 1.0 before IF002 and 1.0.1 before IF004 logs cleartext passwords, which allows remote authenticated users to obtain sensitive information via unspecified vectors.
Affected configurations
Node
ibmspss_analytic_serverMatch1.0.0.0
ORibmspss_analytic_serverMatch1.0.1.0
Related
seebug
seebug
IBM SPSS Analytic Serverไฟกไปป็ฎก็ๆผๆด
2014-04-15 00:00:00
nvd
nvd
CVE-2014-0920
2014-04-10 23:55:24
ibm
ibm
Security Bulletin: Password displayed in plaintext in logs (CVE-2014-0920)
2018-06-16 13:14:14
prion
prion
Code injection
2014-04-10 23:55:00
cvelist
cvelist
CVE-2014-0920
2014-04-10 23:00:00
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
5.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
46.4%
Related for CVE-2014-0920