Information disclosure in Ibm Infosphere_information_server

CVE-2013-5440

IBM InfoSphere Information Server 8.0, 8.1, 8.5, 8.7, and 9.1 allows local users to obtain sensitive information in opportunistic circumstances by leveraging the presence of file content after a failed installation.

Vulnerability class: Information Disclosure

EPSS: 0.001 (17.4th percentile) — read the EPSS interpretation.

Affected products

Ibm Infosphere_information_server — versions 8.0, 8.1, 8.5
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
JR48095 (vendor-advisory, x_refsource_AIXAPAR)
ibm-infosphere-cve20135440-info-disc(87816) (vdb-entry, x_refsource_XF)