PT-2014-5069 · Ibm · Ibm Business Process Manager

Publicado

2014-08-11

·

Atualizado

2017-08-29

·

CVE-2014-3076

CVSS v2.0

5.0

Média

VetorAV:N/AC:L/Au:N/C:P/I:N/A:N
Name of the Vulnerable Software and Affected Versions IBM Business Process Manager (BPM) versions 8.5 through 8.5.5
Description The issue allows remote attackers to obtain potentially sensitive information by visiting an unspecified JSP diagnostic page.
Recommendations For versions 8.5 through 8.5.5, consider restricting access to the JSP diagnostic page until a fix is available.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2014-3076

Produtos afetados

Ibm Business Process Manager