Lucene search
HistoryJan 17, 2015 - 11:59 a.m.
CVE-2014-4835
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
5.5
Confidence
Low
EPSS
0
Percentile
5.1%
IBM ServerGuide before 9.63, UpdateXpress System Packs Installer (UXSPI) before 9.63, and ToolsCenter Suite before 9.63 place credentials in logs, which allows local users to obtain sensitive information by reading a file.
Affected configurations
Node
ibmserverguideRange≤9.60
ORibmtoolscenter_suiteRange≤9.60
ORibmupdatexpress_system_packs_installerRange≤9.60
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | serverguide | * | cpe:2.3:a:ibm:serverguide:*:*:*:*:*:*:*:* |
| ibm | toolscenter_suite | * | cpe:2.3:a:ibm:toolscenter_suite:*:*:*:*:*:*:*:* |
| ibm | updatexpress_system_packs_installer | * | cpe:2.3:a:ibm:updatexpress_system_packs_installer:*:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2015-01-17 11:59:00
cvelist
cvelist
CVE-2014-4835
2015-01-17 11:00:00
cve
cve
CVE-2014-4835
2015-01-17 11:59:03
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
5.5
Confidence
Low
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2014-4835