CVE-2015-1970

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Datapower Xc10 Appliance Firmware
Vendor: CVE Published:; 3 August 2015

Summary

The IBM WebSphere DataPower XC10 appliance 2.1 through 2.1.0.3 and 2.5 through 2.5.0.4 retains data on SSD cards, which might allow physically proximate attackers to obtain sensitive information by extracting a card and attaching it elsewhere.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21962861

x_refsource_CONFIRM

http://www-01.ibm.com/support/docview.wss?uid=swg1IT09803

vendor-advisoryx_refsource_AIXAPAR

Timeline

Vulnerability published
Aug 3, 2015
Vulnerability Reserved
Feb 19, 2015