CVE-2015-7434
IBM Capacity Management Analytics 2.1.0.0 contains a local-authentication disclosure flaw: a local user on the CMA install machine can obtain other CMA users’ encrypted usernames and passwords via a static password in setenv.sh. The issue is actionable on the CMA install host and is fixed in CMA ...