CVE-2015-4990

4MEDIUM

Key Information:

Vendor: IBM
Status: Tealeaf Customer Experience
Vendor: CVE Published:; 2 January 2016

Summary

The portal in IBM Tealeaf Customer Experience before 8.7.1.8818, 8.8 before 8.8.0.9026, 9.0.0, 9.0.0A, 9.0.1 before 9.0.1.1083, 9.0.1A before 9.0.1.5073, 9.0.2 before 9.0.2.1095, and 9.0.2A before 9.0.2.5144 allows local users to discover credentials by leveraging privileges during an unspecified connection type.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21969739

x_refsource_CONFIRM

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jan 2, 2016
Vulnerability Reserved
Jun 24, 2015