← Back

CVE-2015-4991

nvd nist
Published: Feb 15, 2016Modified: May 6, 2026

JSON object

Loading...
4.0
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Exploitability: 2.5 / Impact: 1.4
Source: NVD

Description

IBM SPSS Modeler 14.2 through FP3 IF027, 15 through FP3 IF015, 16 through FP2 IF012, 17 through FP1 IF018, and 17.1 through IF008 includes unspecified cleartext data in memory dumps, which allows local users to obtain sensitive information by reading a dump file.

Affected (14)

Products: Ibm: Spss Modeler
Ibm
1 product
Spss Modeler
Configuration A
14 vulnerable
Vulnerable SoftwareAffected Versions
Ibm
Spss Modeler
Version 14.2.0.0
Spss Modeler
Version 14.2.0.1
Spss Modeler
Version 14.2.0.2
Spss Modeler
Version 14.2.0.3
Spss Modeler
Version 15.0.0.0
Spss Modeler
Version 15.0.0.1
Spss Modeler
Version 15.0.0.2
Spss Modeler
Version 15.0.0.3
Spss Modeler
Version 16.0.0.0
Spss Modeler
Version 16.0.0.1
Spss Modeler
Version 16.0.0.2
Spss Modeler
Version 17.0.0.0
Spss Modeler
Version 17.0.0.1
Spss Modeler
Version 17.1.0.0

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (4)

Source: psirt@us.ibm.com
Vendor Advisory
Source: psirt@us.ibm.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.