CVE-2015-7488
MEDIUMIBM Spectrum Scale <4.1.1.4-4.2.0.1 - Info Disclosure
Title source: llmDescription
IBM Spectrum Scale 4.1.1.x before 4.1.1.4 and 4.2.x before 4.2.0.1, in certain LDAP File protocol configurations, allows remote attackers to discover an LDAP password via unspecified vectors.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=ssg1S1005580
Scores
CVSS v3
5.9
EPSS
0.0038
EPSS Percentile
30.4%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (4)
ibm/spectrum_scale
4.1.1.0
ibm/spectrum_scale
4.1.1.1
ibm/spectrum_scale
4.1.1.2
ibm/spectrum_scale
4.2.0.0
Published
Jan 27, 2016
Tracked Since
Feb 18, 2026