Local Information Disclosure in IBM Security SiteProtector System
CVE-2015-0170

Currently unrated

Key Information:

Vendor: IBM
Status: Security Siteprotector System
Vendor: CVE Published:; 25 May 2015

What is CVE-2015-0170?

The IBM Security SiteProtector System versions 3.0 before 3.0.0.7, 3.1 before 3.1.0.4, and 3.1.1 before 3.1.1.2 are vulnerable to a local information disclosure issue. This vulnerability allows local users to read cached data, potentially exposing sensitive information that should remain confidential. It can lead to unauthorized access to critical data stored in the system's cache, underscoring the importance of regular updates and vigilance in managing software vulnerabilities.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21699470

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 25, 2015
Vulnerability Reserved
Nov 18, 2014