NVD

Id
29772  
Name
CVE-2014-0946  
Description
The RES Console in Rule Execution Server in IBM Operational Decision Manager 7.5 before FP3 IF37, 8.0 before MP1 FP2, and 8.5 before MP1 IF26 does not send appropriate Cache-Control HTTP headers, which allows remote attackers to obtain sensitive information by leveraging an unattended workstation.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2014-05-09  
Modified Date
2014-05-09  
Seq
2014-0946  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
157274 29772 CVE-2014-0946 http://www-01.ibm.com/support/docview.wss?uid=swg21671324  View
157275 29772 CVE-2014-0946 ibm-odm-cve20140946-cache(92573)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
13576 JVNDB-2014-002451 IBM Operational Decision Manager の Rule Execution Server における重要な情報を取得される脆弱性 IBM Operational Decision Manager の Rule Execution Server の RES コンソールは、適切な Cache-Control HTTP ヘッダを送信しないため、重要な情報を取得される脆弱性が存在します。 CVE-2014-0946 68347 CVE-2014-0946 29772 4.3 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-002451.html 2014-04-30 2014-05-12 View