Remote Code Execution in IBM InfoSphere BigInsights Alerts Module
CVE-2014-4781

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Biginsights
Vendor: CVE Published:; 13 February 2015

Summary

The alert module in IBM InfoSphere BigInsights versions 2.1.2 and 3.x prior to 3.0.0.2 contains a vulnerability that allows remote attackers to exploit network-tracing techniques. This exploit can lead to the unauthorized access of sensitive information related to Alert management-services API, enabling potential manipulation of the system and severing the integrity and confidentiality of critical data.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21693053

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/95028

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Feb 13, 2015
Vulnerability Reserved
Jul 9, 2014