What is the severity of CVE-2014-8896?

CVE-2014-8896 has been rated as a medium severity vulnerability.

How do I fix CVE-2014-8896?

To fix CVE-2014-8896, update to the appropriate fixed version provided by IBM for your affected software.

What systems are affected by CVE-2014-8896?

CVE-2014-8896 affects IBM InfoSphere Master Data Management Server for Product Information Management versions 9.x through 9.1 and 10.x through 10.1, as well as 11.0 before FP7, 11.3, and 11.4 before 11.4 FP1.

Can unauthorized users exploit CVE-2014-8896?

No, only remote authenticated users can exploit CVE-2014-8896 to modify data.

What are the potential risks associated with CVE-2014-8896?

The risks associated with CVE-2014-8896 include unauthorized modifications to application data, which could impact data integrity.

Vulnerability/
CVE-2014-8896

medium

CWE

287

22/12/2014

6/8/2024

CVE-2014-8896

First published: Mon Dec 22 2014(Updated: )

The Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Management - Collaborative Edition 10.x through 10.1, 11.0 before FP7, and 11.3 and 11.4 before 11.4 FP1 allows remote authenticated users to modify the administrator's credentials and consequently gain privileges via unspecified vectors.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM InfoSphere Master Data Management Server for Product Information Management	=9.0.0
IBM InfoSphere Master Data Management Server for Product Information Management	=9.0.0.1
IBM InfoSphere Master Data Management Server for Product Information Management	=9.0.0.2
IBM InfoSphere Master Data Management Server for Product Information Management	=9.0.0.3
IBM InfoSphere Master Data Management Server for Product Information Management	=9.0.0.4
IBM InfoSphere Master Data Management Server for Product Information Management	=9.0.0.5
IBM InfoSphere Master Data Management Server for Product Information Management	=9.0.0.6
IBM InfoSphere Master Data Management Server for Product Information Management	=9.0.0.7
IBM InfoSphere Master Data Management Server for Product Information Management	=9.0.0.8
IBM InfoSphere Master Data Management Server for Product Information Management	=9.1.0
Ibm Infosphere Master Data Management Collaborative Server	=10.0.0
Ibm Infosphere Master Data Management Collaborative Server	=10.0.0.1
Ibm Infosphere Master Data Management Collaborative Server	=10.0.0.2
Ibm Infosphere Master Data Management Collaborative Server	=10.0.0.3
Ibm Infosphere Master Data Management Collaborative Server	=10.0.0.4
Ibm Infosphere Master Data Management Collaborative Server	=10.0.0.5
Ibm Infosphere Master Data Management Collaborative Server	=10.1.0
Ibm Infosphere Master Data Management Collaborative Server	=11.0
Ibm Infosphere Master Data Management Collaborative Server	=11.3
Ibm Infosphere Master Data Management Collaborative Server	=11.4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-8896?
CVE-2014-8896 has been rated as a medium severity vulnerability.
How do I fix CVE-2014-8896?
To fix CVE-2014-8896, update to the appropriate fixed version provided by IBM for your affected software.
What systems are affected by CVE-2014-8896?
CVE-2014-8896 affects IBM InfoSphere Master Data Management Server for Product Information Management versions 9.x through 9.1 and 10.x through 10.1, as well as 11.0 before FP7, 11.3, and 11.4 before 11.4 FP1.
Can unauthorized users exploit CVE-2014-8896?
No, only remote authenticated users can exploit CVE-2014-8896 to modify data.
What are the potential risks associated with CVE-2014-8896?
The risks associated with CVE-2014-8896 include unauthorized modifications to application data, which could impact data integrity.

collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/last-modified-date
agent/author
agent/first-publish-date
agent/event
agent/tags
agent/description
agent/source
vendor/ibm
canonical/ibm infosphere master data management server for product information management
version/ibm infosphere master data management server for product information management/9.0.0
version/ibm infosphere master data management server for product information management/9.0.0.1
version/ibm infosphere master data management server for product information management/9.0.0.2
version/ibm infosphere master data management server for product information management/9.0.0.3
version/ibm infosphere master data management server for product information management/9.0.0.4
version/ibm infosphere master data management server for product information management/9.0.0.5
version/ibm infosphere master data management server for product information management/9.0.0.6
version/ibm infosphere master data management server for product information management/9.0.0.7
version/ibm infosphere master data management server for product information management/9.0.0.8
version/ibm infosphere master data management server for product information management/9.1.0
canonical/ibm infosphere master data management collaborative server
version/ibm infosphere master data management collaborative server/10.0.0
version/ibm infosphere master data management collaborative server/10.0.0.1
version/ibm infosphere master data management collaborative server/10.0.0.2
version/ibm infosphere master data management collaborative server/10.0.0.3
version/ibm infosphere master data management collaborative server/10.0.0.4
version/ibm infosphere master data management collaborative server/10.0.0.5
version/ibm infosphere master data management collaborative server/10.1.0
version/ibm infosphere master data management collaborative server/11.0
version/ibm infosphere master data management collaborative server/11.3
version/ibm infosphere master data management collaborative server/11.4