CVE-2015-4989
Last modified
CVE-2015-4989 is a vulnerability of currently unknown severity. The portal in IBM Tealeaf Customer Experience before 8.7.1.8814, 8.8 before 8.8.0.9026, 9.0.0, 9.0.0A, 9.0.1 before 9.0.1.1083, 9.0.1A before 9.0.1.5073, 9.0.2 before 9.0.2.1095, and 9.0.2A before 9.0.2.5144 allows remote attackers to read arbitrary charts by specifying an internal chart name.. EPSS estimates a 0.92% chance of exploitation in the next 30 days.
Description
The portal in IBM Tealeaf Customer Experience before 8.7.1.8814, 8.8 before 8.8.0.9026, 9.0.0, 9.0.0A, 9.0.1 before 9.0.1.1083, 9.0.1A before 9.0.1.5073, 9.0.2 before 9.0.2.1095, and 9.0.2A before 9.0.2.5144 allows remote attackers to read arbitrary charts by specifying an internal chart name.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Tealeaf Customer Experience | <= 8.6 |
| Ibm | Tealeaf Customer Experience | 8.7 |
| Ibm | Tealeaf Customer Experience | 8.8 |
| Ibm | Tealeaf Customer Experience | 9.0.0 |
| Ibm | Tealeaf Customer Experience | 9.0.0a |
| Ibm | Tealeaf Customer Experience | 9.0.1 |
| Ibm | Tealeaf Customer Experience | 9.0.1a |
| Ibm | Tealeaf Customer Experience | 9.0.2 |
| Ibm | Tealeaf Customer Experience | 9.0.2a |
References
- http://www-01.ibm.com/support/docview.wss?uid=swg21968866Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21968866Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-4989?
How severe is CVE-2015-4989?
How do I fix CVE-2015-4989?
Are you affected by CVE-2015-4989?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST