Information Disclosure Vulnerability in IBM Tealeaf Customer Experience
CVE-2015-4961

2.6LOW

Key Information:

Vendor
IBM
Vendor
CVE Published:
24 November 2016

Summary

IBM Tealeaf Customer Experience versions prior to specified releases do not secure communications between internal servers, enabling remote attackers to intercept and retrieve sensitive information through unencrypted HTTP traffic. This vulnerability poses significant risks for data privacy, highlighting the need for secure data transmission practices within network infrastructures.

References

CVSS V3.1

Score:
2.6
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Adjacent Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.