Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-4989

Опубликовано: 02 янв. 2016
Источник: nvd
CVSS3: 3.7
CVSS2: 5
EPSS Низкий

Описание

The portal in IBM Tealeaf Customer Experience before 8.7.1.8814, 8.8 before 8.8.0.9026, 9.0.0, 9.0.0A, 9.0.1 before 9.0.1.1083, 9.0.1A before 9.0.1.5073, 9.0.2 before 9.0.2.1095, and 9.0.2A before 9.0.2.5144 allows remote attackers to read arbitrary charts by specifying an internal chart name.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:tealeaf_customer_experience:*:*:*:*:*:*:*:*
Версия до 8.6 (включая)
cpe:2.3:a:ibm:tealeaf_customer_experience:8.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tealeaf_customer_experience:8.8:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tealeaf_customer_experience:9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tealeaf_customer_experience:9.0.0a:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tealeaf_customer_experience:9.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tealeaf_customer_experience:9.0.1a:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tealeaf_customer_experience:9.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tealeaf_customer_experience:9.0.2a:*:*:*:*:*:*:*

EPSS

Процентиль: 43%
0.00207
Низкий

3.7 Low

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

github логотип

GHSA-35w2-fcvf-666f

CVSS3: 3.7
github
больше 3 лет назад

The portal in IBM Tealeaf Customer Experience before 8.7.1.8814, 8.8 before 8.8.0.9026, 9.0.0, 9.0.0A, 9.0.1 before 9.0.1.1083, 9.0.1A before 9.0.1.5073, 9.0.2 before 9.0.2.1095, and 9.0.2A before 9.0.2.5144 allows remote attackers to read arbitrary charts by specifying an internal chart name.

EPSS

Процентиль: 43%
0.00207
Низкий

3.7 Low

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200