CVE-2014-0920

Currently unrated

Key Information:

Vendor: IBM
Status: Spss Analytic Server
Vendor: CVE Published:; 10 April 2014

Summary

IBM SPSS Analytic Server 1.0 before IF002 and 1.0.1 before IF004 logs cleartext passwords, which allows remote authenticated users to obtain sensitive information via unspecified vectors.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/92073

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg1PI13527

vendor-advisoryx_refsource_AIXAPAR

http://www-01.ibm.com/support/docview.wss?uid=swg21669506

x_refsource_CONFIRM

Timeline

Vulnerability published
Apr 10, 2014
Vulnerability Reserved
Jan 6, 2014