Lucene search

[email protected]CVE-2015-0170

HistoryMay 25, 2015 - 2:59 p.m.

CVE-2015-0170

2015-05-2514:59:14

CWE-200

[email protected]

web.nvd.nist.gov

ibm

security

siteprotector

system

vulnerability

information disclosure

local users

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

IBM Security SiteProtector System 3.0 before 3.0.0.7, 3.1 before 3.1.0.4, and 3.1.1 before 3.1.1.2 allows local users to obtain sensitive information by reading cached data.

Affected configurations

NVD

Node

ibmsecurity_siteprotector_systemMatch3.0

ibmsecurity_siteprotector_systemMatch3.0.0.1

ibmsecurity_siteprotector_systemMatch3.0.0.2

ibmsecurity_siteprotector_systemMatch3.0.0.3

ibmsecurity_siteprotector_systemMatch3.0.0.4

ibmsecurity_siteprotector_systemMatch3.0.0.5

ibmsecurity_siteprotector_systemMatch3.0.0.6

ibmsecurity_siteprotector_systemMatch3.1.0.0

ibmsecurity_siteprotector_systemMatch3.1.0.1

ibmsecurity_siteprotector_systemMatch3.1.0.2

ibmsecurity_siteprotector_systemMatch3.1.0.3

ibmsecurity_siteprotector_systemMatch3.1.1.0

ibmsecurity_siteprotector_systemMatch3.1.1.1

CPENameOperatorVersion
ibm:security_siteprotector_systemibm security siteprotector systemeq3.0
ibm:security_siteprotector_systemibm security siteprotector systemeq3.0.0.1
ibm:security_siteprotector_systemibm security siteprotector systemeq3.0.0.2
ibm:security_siteprotector_systemibm security siteprotector systemeq3.0.0.3
ibm:security_siteprotector_systemibm security siteprotector systemeq3.0.0.4
ibm:security_siteprotector_systemibm security siteprotector systemeq3.0.0.5
ibm:security_siteprotector_systemibm security siteprotector systemeq3.0.0.6
ibm:security_siteprotector_systemibm security siteprotector systemeq3.1.0.0
ibm:security_siteprotector_systemibm security siteprotector systemeq3.1.0.1
ibm:security_siteprotector_systemibm security siteprotector systemeq3.1.0.2

CPE	Name	Operator	Version
ibm:security_siteprotector_system	ibm security siteprotector system	eq	3.0
ibm:security_siteprotector_system	ibm security siteprotector system	eq	3.0.0.1
ibm:security_siteprotector_system	ibm security siteprotector system	eq	3.0.0.2
ibm:security_siteprotector_system	ibm security siteprotector system	eq	3.0.0.3
ibm:security_siteprotector_system	ibm security siteprotector system	eq	3.0.0.4
ibm:security_siteprotector_system	ibm security siteprotector system	eq	3.0.0.5
ibm:security_siteprotector_system	ibm security siteprotector system	eq	3.0.0.6
ibm:security_siteprotector_system	ibm security siteprotector system	eq	3.1.0.0
ibm:security_siteprotector_system	ibm security siteprotector system	eq	3.1.0.1
ibm:security_siteprotector_system	ibm security siteprotector system	eq	3.1.0.2

Rows per page:

1-10 of 131

References

www-01.ibm.com/support/docview.wss?uid=swg21699470

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2015-0170

cvelist1 prion1 nvd1 ibm1