CVE-2015-1970

The IBM WebSphere DataPower XC10 appliance 2.1 through 2.1.0.3 and 2.5 through 2.5.0.4 retains data on SSD cards, which might allow physically proximate attackers to obtain sensitive information by extracting a card and attaching it elsewhere.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:ibm:websphere_datapower_xc10_appliance_firmware:2.1.0.0:*:*:*:*:*:*:*
cpe:2.3:o:ibm:websphere_datapower_xc10_appliance_firmware:2.1.0.1:*:*:*:*:*:*:*
cpe:2.3:o:ibm:websphere_datapower_xc10_appliance_firmware:2.1.0.2:*:*:*:*:*:*:*
cpe:2.3:o:ibm:websphere_datapower_xc10_appliance_firmware:2.1.0.3:*:*:*:*:*:*:*
cpe:2.3:o:ibm:websphere_datapower_xc10_appliance_firmware:2.5.0.0:*:*:*:*:*:*:*
cpe:2.3:o:ibm:websphere_datapower_xc10_appliance_firmware:2.5.0.1:*:*:*:*:*:*:*
cpe:2.3:o:ibm:websphere_datapower_xc10_appliance_firmware:2.5.0.2:*:*:*:*:*:*:*
cpe:2.3:o:ibm:websphere_datapower_xc10_appliance_firmware:2.5.0.3:*:*:*:*:*:*:*
cpe:2.3:o:ibm:websphere_datapower_xc10_appliance_firmware:2.5.0.4:*:*:*:*:*:*:*

History

21 Nov 2024, 02:26

Type Values Removed Values Added
References () http://www-01.ibm.com/support/docview.wss?uid=swg1IT09803 - () http://www-01.ibm.com/support/docview.wss?uid=swg1IT09803 -
References () http://www-01.ibm.com/support/docview.wss?uid=swg21962861 - Patch, Vendor Advisory () http://www-01.ibm.com/support/docview.wss?uid=swg21962861 - Patch, Vendor Advisory

Information

Published : 2015-08-03 19:59

Updated : 2024-11-21 02:26


NVD link : CVE-2015-1970

Mitre link : CVE-2015-1970

CVE.ORG link : CVE-2015-1970


JSON object : View

Products Affected

ibm

  • websphere_datapower_xc10_appliance_firmware
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor