CVE-2015-4958
LOWIBM InfoSphere MDM Collaborative Edition Sensitive Data Exposure via Browser Cache
Title source: llmDescription
IBM InfoSphere Master Data Management - Collaborative Edition 9.1, 10.1, 11.0 before 11.0.0.0 IF11, 11.3 before 11.3.0.0 IF7, and 11.4 before 11.4.0.4 IF1 does not properly restrict browser caching, which allows local users to obtain sensitive information by reading cache files.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21971545
Scores
CVSS v3
3.3
EPSS
0.0029
EPSS Percentile
20.4%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (5)
ibm/infosphere_master_data_management
9.1
ibm/infosphere_master_data_management
10.1
ibm/infosphere_master_data_management
11.0
ibm/infosphere_master_data_management
11.3
ibm/infosphere_master_data_management
11.4
Published
Jan 17, 2016
Tracked Since
Feb 18, 2026