CVE-2014-6143
IBM WebSphere DataPower XC10 2.1/2.5 - Sensitive Information Exposure via Local Response Reading
Title source: llmDescription
The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows local users to obtain sensitive information by reading a response.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/96913
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21691035
Various Sources vendor-advisory
x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IT04614
Scores
EPSS
0.0033
EPSS Percentile
24.9%
Details
CWE
CWE-200
Status
published
Products (2)
ibm/websphere_datapower_xc10_appliance_firmware
2.1.0.0
ibm/websphere_datapower_xc10_appliance_firmware
2.5.0.0
Published
Dec 11, 2014
Tracked Since
Feb 18, 2026