Password Discovery Vulnerability in IBM Lotus Connections
CVE-2008-4808

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Connections
Vendor: CVE Published:; 31 October 2008

What is CVE-2008-4808?

IBM Lotus Connections 2.x prior to version 2.0.1 is susceptible to a vulnerability that permits unauthorized individuals to ascertain user passwords through various unspecified methods. This security flaw underscores the necessity for users to upgrade to the latest version to mitigate the risk of sensitive information disclosure.

References

http://secunia.com/advisories/32466

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/31989

vdb-entryx_refsource_BID

http://www-01.ibm.com/support/docview.wss?uid=swg27014008

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 31, 2008
Vulnerability Reserved
Oct 31, 2008