CVE-2014-4843
IBM CĂșram Universal Access in Curam SPM exposes internal caseworker usernames via a URL under specific versions: 6.0 SP2 before EP26, 6.0.4 before 6.0.4.6, and 6.0.5 before 6.0.5.5 iFix5. Root cause is information disclosure through URL construction. Impact: partial confidentiality compromise of ...
