Information disclosure in Ibm Workload_deployer

CVE-2014-6190

The log viewer in IBM Workload Deployer 3.1 before 3.1.0.7 allows remote attackers to obtain sensitive information via a direct request for the URL of a log document.

Vulnerability class: Information Disclosure

EPSS: 0.002 (45.3th percentile) — read the EPSS interpretation.

Affected products

Ibm Workload_deployer — versions 3.1.0, 3.1.0.1, 3.1.0.2
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

psirt@us.ibm.com (x_refsource_CONFIRM, Patch, Vendor Advisory)