CVE-2015-0143: Infoleak
First published: Sat Oct 03 2015(Updated: )
IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to obtain sensitive information by reading error messages.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM OpenPages | =6.2.0.0 | |
| IBM OpenPages | =6.2.1.0 | |
| IBM OpenPages | =6.2.1.1 | |
| IBM OpenPages | =7.0.0.0 | |
| IBM OpenPages | =7.1.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2015-0143?
The severity of CVE-2015-0143 is moderate, as it allows remote authenticated users to access sensitive information.
How do I fix CVE-2015-0143?
To fix CVE-2015-0143, upgrade to IBM OpenPages GRC Platform versions 6.2.1.1 IF5, 7.0 FP4, or 7.1 FP1 or later.
Which versions of IBM OpenPages GRC Platform are affected by CVE-2015-0143?
CVE-2015-0143 affects versions 6.2.0.0, 6.2.1.0, 7.0.0.0, and 7.1.0.0 of IBM OpenPages GRC Platform.
What type of vulnerability is CVE-2015-0143?
CVE-2015-0143 is an information disclosure vulnerability.
Who can exploit CVE-2015-0143?
CVE-2015-0143 can be exploited by remote authenticated users.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/remedy
- agent/last-modified-date
- agent/author
- agent/severity
- agent/references
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ibm
- canonical/ibm openpages
- version/ibm openpages/6.2.0.0
- version/ibm openpages/6.2.1.0
- version/ibm openpages/6.2.1.1
- version/ibm openpages/7.0.0.0
- version/ibm openpages/7.1.0.0