CVE-2015-4991

4MEDIUM

Key Information:

Vendor
IBM
Status
Spss Modeler
Vendor
CVE Published:
15 February 2016

Summary

IBM SPSS Modeler 14.2 through FP3 IF027, 15 through FP3 IF015, 16 through FP2 IF012, 17 through FP1 IF018, and 17.1 through IF008 includes unspecified cleartext data in memory dumps, which allows local users to obtain sensitive information by reading a dump file.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21975663
x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg1PI46224
vendor-advisoryx_refsource_AIXAPAR

CVSS V3.1

Score:
4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.