CVE-2014-4835 — LOW (2.1) — White Hats Nepal

Q: How severe is CVE-2014-4835?

CVE-2014-4835 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2014-4835?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Serverguide, Ibm Toolscenter Suite, Ibm Updatexpress System Packs Installer.

Vulnerability Description

IBM ServerGuide before 9.63, UpdateXpress System Packs Installer (UXSPI) before 9.63, and ToolsCenter Suite before 9.63 place credentials in logs, which allows local users to obtain sensitive information by reading a file.

CVSS Score

2.1

LOW

AV:L/AC:L/Au:N/C:P/I:N/A:N

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Ibm	Serverguide	<= 9.60
Ibm	Toolscenter Suite	<= 9.60
Ibm	Updatexpress System Packs Installer	<= 9.60

Related Weaknesses (CWE)

CWE-200

References

FAQ

What is CVE-2014-4835?

CVE-2014-4835 is a vulnerability with a CVSS score of 2.1 (LOW). IBM ServerGuide before 9.63, UpdateXpress System Packs Installer (UXSPI) before 9.63, and ToolsCenter Suite before 9.63 place credentials in logs, which allows local users to obtain sensitive informat...

How severe is CVE-2014-4835?

CVE-2014-4835 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-4835?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Serverguide, Ibm Toolscenter Suite, Ibm Updatexpress System Packs Installer.