Information Disclosure in IBM WebSphere eXtreme Scale Client
CVE-2013-6734

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Extreme Scale Client
Vendor: CVE Published:; 22 February 2014

Summary

The IBM WebSphere eXtreme Scale Client versions 7.1 through 8.6.0.4 are susceptible to an information disclosure issue. This flaw arises from inadequate isolation of cached data among users, permitting remote authenticated users to potentially access sensitive data opportunistically, given shared access to the same web container. This vulnerability necessitates immediate attention to safeguard user data and maintain system integrity.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1PI06341

vendor-advisoryx_refsource_AIXAPAR

https://exchange.xforce.ibmcloud.com/vulnerabilities/89397

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21664641

x_refsource_CONFIRM

Timeline

Vulnerability published
Feb 22, 2014
Vulnerability Reserved
Nov 8, 2013