The portal in IBM Tealeaf Customer Experience before 8.7.1.8814, 8.8 before 8.8.0.9026, 9.0.0, 9.0.0A, 9.0.1 before 9.0.1.1083, 9.0.1A before 9.0.1.5073, 9.0.2 before 9.0.2.1095, and 9.0.2A before 9.0.2.5144 allows remote attackers to read arbitrary charts by specifying an internal chart name.
References
Link | Resource |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg21968866 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2016-01-02T02:00:00
Updated: 2016-01-02T04:57:01
Reserved: 2015-06-24T00:00:00
Link: CVE-2015-4989
JSON object: View
NVD Information
Status : Analyzed
Published: 2016-01-02T05:59:00.220
Modified: 2016-01-06T15:35:29.440
Link: CVE-2015-4989
JSON object: View
Redhat Information
No data.
CWE