CVE-2014-8912

Name of the Vulnerable Software and Affected Versions IBM WebSphere Portal versions 6.1.0 through 6.1.0.6 CF27 IBM WebSphere Portal versions 6.1.5 through 6.1.5.3 CF27 IBM WebSphere Portal versions 7.0.0 through 7.0.0.2 CF29 IBM WebSphere Portal versions 8.0.0 through 8.0.0.1 CF18 IBM WebSphere Portal versions 8.5.0 before CF08

Description The issue improperly restricts resource access, allowing remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by configuration information.

Recommendations For versions 6.1.0 through 6.1.0.6 CF27, update to a version outside of this range to resolve the issue. For versions 6.1.5 through 6.1.5.3 CF27, update to a version outside of this range to resolve the issue. For versions 7.0.0 through 7.0.0.2 CF29, update to a version outside of this range to resolve the issue. For versions 8.0.0 through 8.0.0.1 CF18, update to a version outside of this range to resolve the issue. For versions 8.5.0 before CF08, update to CF08 or later to resolve the issue.