Sensitive Information Disclosure in IBM Multi-Enterprise Integration Gateway and B2B Advanced Communications
CVE-2015-7445
4.3MEDIUM
What is CVE-2015-7445?
The vulnerability allows remote authenticated users to access sensitive information by exploiting error messages in the responses of the IBM Multi-Enterprise Integration Gateway and B2B Advanced Communications products. When guest access is enabled, improperly handled error messages may disclose sensitive information, posing a risk to data confidentiality and integrity. Users should ensure that they are using supported versions and apply necessary security patches to mitigate the risks.