Caching Vulnerability in IBM InfoSphere Master Data Management Products
CVE-2015-4958

3.3LOW

Key Information:

Vendor: IBM
Status: Infosphere Master Data Management
Vendor: CVE Published:; 17 January 2016

What is CVE-2015-4958?

IBM InfoSphere Master Data Management - Collaborative Edition suffers from a vulnerability due to inadequate restrictions on browser caching. This oversight allows local users to potentially gain access to sensitive information by reading cached files, posing a risk to data confidentiality. Affected versions include 9.1, 10.1, and certain releases of 11.0, 11.3, and 11.4, necessitating prompt attention from users to mitigate information exposure.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21971545

x_refsource_CONFIRM

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 17, 2016
Vulnerability Reserved
Jun 24, 2015