CVE-2013-5433

Name of the Vulnerable Software and Affected Versions IBM InfoSphere Optim versions 3.0 through 9.1

Description The issue concerns hardcoded database credentials in the Data Growth Solution for JD Edwards EnterpriseOne. This allows remote authenticated users to obtain sensitive information by reading an unspecified field in an XML document.

Recommendations For versions 3.0 through 9.1, update the configuration to remove hardcoded database credentials and instead use secure authentication methods. As a temporary workaround, consider restricting access to the XML documents that contain the sensitive information.