IBM Tealeaf Customer Experience Vulnerability Exposes Internal Chart Data
CVE-2015-4989

3.7LOW

Key Information:

Vendor: IBM
Status: Tealeaf Customer Experience
Vendor: CVE Published:; 2 January 2016

Summary

A vulnerability in IBM Tealeaf Customer Experience allows remote users to exploit the portal for unauthorized access to internal chart information by specifying an internal chart name. This exposure can potentially lead to unauthorized data access, compromising sensitive information and impacting overall data integrity.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21968866

x_refsource_CONFIRM

CVSS V3.1

Score:

3.7

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 2, 2016
Vulnerability Reserved
Jun 24, 2015