CVE-2014-4775

Published: Aug 17, 2014Modified: May 6, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

IBM InfoSphere Master Data Management - Collaborative Edition 10.x before 10.1-FP11 and 11.x before 11.0-FP5 and InfoSphere Master Data Management Server for Product Information Management 9.x before 9.1-FP15 and 10.x and 11.x before 11.3-IF2 do not properly protect credentials, which allows remote attackers to obtain sensitive information via unspecified vectors.

Affected (6)

Products: Ibm: Infosphere Master Data Management, Infosphere Master Data Management Server For Product Information Management

Ibm

2 products

Infosphere Master Data Management

Infosphere Master Data Management Server For Product Information Management

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Ibm Infosphere Master Data Management	Version 10.0
Ibm Infosphere Master Data Management	Version 10.1
Ibm Infosphere Master Data Management	Version 11.0
Ibm Infosphere Master Data Management	Version 11.3
Ibm Infosphere Master Data Management Server For Product Information Management	Version 9.0
Ibm Infosphere Master Data Management Server For Product Information Management	Version 9.1

Related CWEs

CWE-255

References (4)

http://www-01.ibm.com/support/docview.wss?uid=swg21681640

Source: psirt@us.ibm.com

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/94917

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg21681640

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/94917

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.