CVE-2014-0863

Currently unrated

Key Information:

Vendor: IBM
Status: Cognos Tm1
Vendor: CVE Published:; 5 September 2014

Summary

The client in IBM Cognos TM1 9.5.2.3 before IF5, 10.1.1.2 before IF1, 10.2.0.2 before IF1, and 10.2.2.0 before IF1 stores obfuscated passwords in memory, which allows remote authenticated users to obtain sensitive cleartext information via an unspecified security tool.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21682397

x_refsource_CONFIRM

http://www.securityfocus.com/bid/69594

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/90937

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Sep 5, 2014
Vulnerability Reserved
Jan 6, 2014