Vulnerability Description
IBM Multi-Enterprise Integration Gateway 1.0 through 1.0.0.1 and B2B Advanced Communications 1.x before 1.0.0.4, when guest access is configured, allow remote authenticated users to obtain sensitive information by reading error messages in responses.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | B2B Advanced Communications | 1.0 |
| Ibm | Multi-Enterprise Integration Gateway | 1.0.0 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT12573
- http://www-01.ibm.com/support/docview.wss?uid=swg21972480Vendor Advisory
- http://www.securityfocus.com/bid/79681
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT12573
- http://www-01.ibm.com/support/docview.wss?uid=swg21972480Vendor Advisory
- http://www.securityfocus.com/bid/79681
FAQ
What is CVE-2015-7445?
CVE-2015-7445 is a vulnerability with a CVSS score of 4.3 (MEDIUM). IBM Multi-Enterprise Integration Gateway 1.0 through 1.0.0.1 and B2B Advanced Communications 1.x before 1.0.0.4, when guest access is configured, allow remote authenticated users to obtain sensitive i...
How severe is CVE-2015-7445?
CVE-2015-7445 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-7445?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm B2B Advanced Communications, Ibm Multi-Enterprise Integration Gateway.