1. Home
  2. CVE Database
  3. CVE-2014-0894
LOW · 3.5

CVE-2014-0894

RICOS in IBM Algo Credit Limits (aka ACLM) 4.5.0 through 4.7.0 before 4.7.0.03 FP5 in IBM Algorithmics allows context-dependent attackers to discover database credentials by reading the DbUser and DbP...

Vulnerability Description

RICOS in IBM Algo Credit Limits (aka ACLM) 4.5.0 through 4.7.0 before 4.7.0.03 FP5 in IBM Algorithmics allows context-dependent attackers to discover database credentials by reading the DbUser and DbPass fields in an XML document.

CVSS Score

3.5

LOW

AV:N/AC:M/Au:S/C:P/I:N/A:N
Confidentiality
PARTIAL
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
IbmAlgo Credit Limits4.5.0
IbmAlgorithmics-

Related Weaknesses (CWE)

CWE-200

References

FAQ

What is CVE-2014-0894?

CVE-2014-0894 is a vulnerability with a CVSS score of 3.5 (LOW). RICOS in IBM Algo Credit Limits (aka ACLM) 4.5.0 through 4.7.0 before 4.7.0.03 FP5 in IBM Algorithmics allows context-dependent attackers to discover database credentials by reading the DbUser and DbP...

How severe is CVE-2014-0894?

CVE-2014-0894 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-0894?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Algo Credit Limits, Ibm Algorithmics.