Vulnerability Description
IBM WebSphere MQ classes for Java libraries 8.0 before 8.0.0.1 and Websphere MQ Explorer 7.5 before 7.5.0.5 and 8.0 before 8.0.0.2 allow local users to discover preconfigured cleartext passwords via an unspecified trace operation.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Websphere Mq | 8.0.0.0 |
| Ibm | Websphere Mq Explorer | 7.5.0.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/59921
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT04023
- http://www-01.ibm.com/support/docview.wss?uid=swg21686339Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95467
- http://secunia.com/advisories/59921
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT04023
- http://www-01.ibm.com/support/docview.wss?uid=swg21686339Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95467
FAQ
What is CVE-2014-4822?
CVE-2014-4822 is a vulnerability with a CVSS score of 1.9 (LOW). IBM WebSphere MQ classes for Java libraries 8.0 before 8.0.0.1 and Websphere MQ Explorer 7.5 before 7.5.0.5 and 8.0 before 8.0.0.2 allow local users to discover preconfigured cleartext passwords via a...
How severe is CVE-2014-4822?
CVE-2014-4822 has been rated LOW with a CVSS base score of 1.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-4822?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Websphere Mq, Ibm Websphere Mq Explorer.