← back
CVE-2014-6148

CVE-2014-6148

EPSS 1.0%
IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.0.0 through 7.2.0.10, 7.2.1.0 through 7.2.1.6, and 7.2.2.0 through 7.2.2.2 does not require TADDM authentication for rptdesign downloads, which allows remote authenticated users to obtain sensitive database information via a crafted URL.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/61785https://exchange.xforce.ibmcloud.com/vulnerabilities/96918http://www-01.ibm.com/support/docview.wss?uid=swg21688549http://www.securityfocus.com/bid/70842