Lucene search
HistoryFeb 02, 2015 - 1:59 a.m.
CVE-2014-6170
ibm
websphere
message broker
integration bus
httpinput
sensitive information
leakage
cve-2014-6170
nvd
6.1 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
69.0%
The HTTPInput node in IBM WebSphere Message Broker 7.0 before 7.0.0.8 and 8.0 before 8.0.0.6 and IBM Integration Bus 9.0 before 9.0.0.4 allows remote attackers to obtain sensitive information by triggering a SOAP fault.
Affected configurations
Node
ibmintegration_busMatch9.0
ORibmintegration_busMatch9.0.0.1
ORibmintegration_busMatch9.0.0.2
ORibmintegration_busMatch9.0.0.3
Node
ibmwebsphere_message_brokerMatch7.0.
ORibmwebsphere_message_brokerMatch7.0.0.1
ORibmwebsphere_message_brokerMatch7.0.0.2
ORibmwebsphere_message_brokerMatch7.0.0.3
ORibmwebsphere_message_brokerMatch7.0.0.4
ORibmwebsphere_message_brokerMatch7.0.0.5
ORibmwebsphere_message_brokerMatch7.0.0.6
ORibmwebsphere_message_brokerMatch7.0.0.7
ORibmwebsphere_message_brokerMatch8.0
ORibmwebsphere_message_brokerMatch8.0.0.1
ORibmwebsphere_message_brokerMatch8.0.0.2
ORibmwebsphere_message_brokerMatch8.0.0.3
ORibmwebsphere_message_brokerMatch8.0.0.4
ORibmwebsphere_message_brokerMatch8.0.0.5
Related
cvelist
cvelist
CVE-2014-6170
2015-02-02 01:00:00
prion
prion
Design/Logic Flaw
2015-02-02 01:59:00
nvd
nvd
CVE-2014-6170
2015-02-02 01:59:02
6.1 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
69.0%
Related for CVE-2014-6170