Exposure of Operational State in IBM Tealeaf Consumer Experience
CVE-2016-0382
4MEDIUM
Key Information:
- Vendor
- IBM Corporation
- Vendor
- CVE Published:
- 3 May 2017
Summary
The IBM Tealeaf Consumer Experience versions 8.7, 8.8, and 9.0 reveal certain operational states that may be unintentionally captured by network components such as IIS. This exposure could lead to sensitive information being accessible, impacting the overall security posture of the affected systems. For further details, refer to IBM's support documentation.
Affected Version(s)
Tealeaf Customer Experience 8.7, 8.8, 9.0.0, 9.0.1, 9.0.2
References
CVSS V3.1
Score:
4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved