CVE-2014-6133 : IBM API Management 3.x before 3.0.1.0 allows local users to obtain sensitive cip

IBM API Management 3.x before 3.0.1.0 allows local users to obtain sensitive ciphertext information via unspecified vectors.

Published 2014-10-26 18:55:05

Updated 2025-04-12 10:46:41

Source IBM Corporation

View at NVD, CVE.org

Products affected by CVE-2014-6133

IBM » Api Management » Version: 3.0.0.0
cpe:2.3:a:ibm:api_management:3.0.0.0:*:*:*:*:*:*:*
Matching versions
IBM » Api Management » Version: 3.0.0.1
cpe:2.3:a:ibm:api_management:3.0.0.1:*:*:*:*:*:*:*
Matching versions

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 14 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
2.1	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:N	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

http://www-01.ibm.com/support/docview.wss?uid=swg21686801

IBM notice: The page you requested cannot be displayed
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1LI78229

IBM notice: The page you requested cannot be displayed
https://exchange.xforce.ibmcloud.com/vulnerabilities/96813

IBM API Management information disclosure CVE-2014-6133 Vulnerability Report

Jump to