The Unified Task List (UTL) Portlet for IBM WebSphere Portal 7.x and 8.x through 8.0.0.1 CF12 allows remote attackers to obtain potentially sensitive information about environment variables and JAR versions via unspecified vectors.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:07
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/60499 - | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg1PI18909 - | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21677032 - Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/93530 - |
Information
Published : 2014-07-29 20:55
Updated : 2024-11-21 02:07
NVD link : CVE-2014-3056
Mitre link : CVE-2014-3056
CVE.ORG link : CVE-2014-3056
JSON object : View
Products Affected
ibm
- websphere_portal_unified_task_list_portlet
- websphere_portal
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor