CVE-2014-4843

2017-06-08T16:29:00
ID CVE-2014-4843
Type cve
Reporter cve@mitre.org
Modified 2017-06-15T14:16:00

Description

Curam Universal Access in IBM Curam Social Program Management (SPM) 6.0 SP2 before EP26, 6.0.4 before 6.0.4.6, and 6.0.5 before 6.0.5.5 iFix5 allows remote attackers to obtain sensitive information about internal caseworker usernames via vectors related to a URL.