CVE-2013-2951

2018-07-1116:00:00

ibm

www.cve.org

7.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

IBM WebSphere Portal 7.0.0.x and 8.0.0.x write passwords to a trace file when tracing is enabled for the Selfcare Portlet (Profile Management), which allows local users to obtain sensitive information by reading the file. IBM X-Force ID: 83621.

References

www-01.ibm.com/support/docview.wss?uid=swg21642097

exchange.xforce.ibmcloud.com/vulnerabilities/83621