CVE-2014-0863

The client in IBM Cognos TM1 9.5.2.3 before IF5, 10.1.1.2 before IF1, 10.2.0.2 before IF1, and 10.2.2.0 before IF1 stores obfuscated passwords in memory, which allows remote authenticated users to obtain sensitive cleartext information via an unspecified security tool.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:cognos_tm1:9.5.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:cognos_tm1:10.1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:cognos_tm1:10.2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:cognos_tm1:10.2.2:*:*:*:*:*:*:*

History

21 Nov 2024, 02:02

Type Values Removed Values Added
References () http://www-01.ibm.com/support/docview.wss?uid=swg21682397 - Patch, Vendor Advisory () http://www-01.ibm.com/support/docview.wss?uid=swg21682397 - Patch, Vendor Advisory
References () http://www.securityfocus.com/bid/69594 - () http://www.securityfocus.com/bid/69594 -
References () http://www.securitytracker.com/id/1030805 - () http://www.securitytracker.com/id/1030805 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/90937 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/90937 -

Information

Published : 2014-09-05 01:55

Updated : 2024-11-21 02:02


NVD link : CVE-2014-0863

Mitre link : CVE-2014-0863

CVE.ORG link : CVE-2014-0863


JSON object : View

Products Affected

ibm

  • cognos_tm1
CWE
CWE-255

Credentials Management Errors