2 matches found
Security Bulletin: IBM Tealeaf Customer Experience allows user authentication via unencrypted GET request (CVE-2015-4990)
Summary The IBM Tealeaf Customer Experience portal allows a user to authenticate via means that could result in exposure of credentials. Vulnerability Details CVEID: CVE-2015-4990 DESCRIPTION: The IBM Tealeaf Customer Experience could allow a local privileged user to obtain the authentication...
CVE-2015-4990
IBM Tealeaf Customer Experience CVE-2015-4990 affects the portal in versions 8.0–9.0.2, where a local privileged user could obtain authentication credentials from the portal by leveraging privileges during an unspecified connection type. The IBM security bulletin summarizes the vulnerability and ...