CVE-2015-4958

LOW

IBM InfoSphere MDM Collaborative Edition Sensitive Data Exposure via Browser Cache

Title source: llm
STIX 2.1

Description

IBM InfoSphere Master Data Management - Collaborative Edition 9.1, 10.1, 11.0 before 11.0.0.0 IF11, 11.3 before 11.3.0.0 IF7, and 11.4 before 11.4.0.4 IF1 does not properly restrict browser caching, which allows local users to obtain sensitive information by reading cache files.

References (1)

Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21971545

Scores

CVSS v3 3.3
EPSS 0.0029
EPSS Percentile 20.4%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Details

CWE
CWE-200
Status published
Products (5)
ibm/infosphere_master_data_management 9.1
ibm/infosphere_master_data_management 10.1
ibm/infosphere_master_data_management 11.0
ibm/infosphere_master_data_management 11.3
ibm/infosphere_master_data_management 11.4
Published Jan 17, 2016
Tracked Since Feb 18, 2026