What is the severity of CVE-2015-4991?

CVE-2015-4991 is considered to have a medium severity due to the potential exposure of sensitive information in memory dumps.

How do I fix CVE-2015-4991?

To fix CVE-2015-4991, you should update IBM SPSS Modeler to the latest version that addresses the vulnerability.

What does CVE-2015-4991 affect?

CVE-2015-4991 affects IBM SPSS Modeler versions 14.2 through 17.1, specifically with certain fix packs.

Who is impacted by CVE-2015-4991?

Local users of the affected versions of IBM SPSS Modeler may be impacted by CVE-2015-4991 due to access to sensitive information.

Is CVE-2015-4991 an ongoing risk?

CVE-2015-4991 poses an ongoing risk if the software remains unpatched, allowing unauthorized access to sensitive data.

Vulnerability/
CVE-2015-4991

medium

CWE

200

15/2/2016

6/8/2024

CVE-2015-4991: Infoleak

First published: Mon Feb 15 2016(Updated: )

IBM SPSS Modeler 14.2 through FP3 IF027, 15 through FP3 IF015, 16 through FP2 IF012, 17 through FP1 IF018, and 17.1 through IF008 includes unspecified cleartext data in memory dumps, which allows local users to obtain sensitive information by reading a dump file.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM SPSS Modeler Subscription	=14.2.0.0
IBM SPSS Modeler Subscription	=14.2.0.1
IBM SPSS Modeler Subscription	=14.2.0.2
IBM SPSS Modeler Subscription	=14.2.0.3
IBM SPSS Modeler Subscription	=15.0.0.0
IBM SPSS Modeler Subscription	=15.0.0.1
IBM SPSS Modeler Subscription	=15.0.0.2
IBM SPSS Modeler Subscription	=15.0.0.3
IBM SPSS Modeler Subscription	=16.0.0.0
IBM SPSS Modeler Subscription	=16.0.0.1
IBM SPSS Modeler Subscription	=16.0.0.2
IBM SPSS Modeler Subscription	=17.0.0.0
IBM SPSS Modeler Subscription	=17.0.0.1
IBM SPSS Modeler Subscription	=17.1.0.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-4991?
CVE-2015-4991 is considered to have a medium severity due to the potential exposure of sensitive information in memory dumps.
How do I fix CVE-2015-4991?
To fix CVE-2015-4991, you should update IBM SPSS Modeler to the latest version that addresses the vulnerability.
What does CVE-2015-4991 affect?
CVE-2015-4991 affects IBM SPSS Modeler versions 14.2 through 17.1, specifically with certain fix packs.
Who is impacted by CVE-2015-4991?
Local users of the affected versions of IBM SPSS Modeler may be impacted by CVE-2015-4991 due to access to sensitive information.
Is CVE-2015-4991 an ongoing risk?
CVE-2015-4991 poses an ongoing risk if the software remains unpatched, allowing unauthorized access to sensitive data.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/weakness
agent/last-modified-date
agent/author
agent/first-publish-date
agent/description
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm spss modeler subscription
version/ibm spss modeler subscription/14.2.0.0
version/ibm spss modeler subscription/14.2.0.1
version/ibm spss modeler subscription/14.2.0.2
version/ibm spss modeler subscription/14.2.0.3
version/ibm spss modeler subscription/15.0.0.0
version/ibm spss modeler subscription/15.0.0.1
version/ibm spss modeler subscription/15.0.0.2
version/ibm spss modeler subscription/15.0.0.3
version/ibm spss modeler subscription/16.0.0.0
version/ibm spss modeler subscription/16.0.0.1
version/ibm spss modeler subscription/16.0.0.2
version/ibm spss modeler subscription/17.0.0.0
version/ibm spss modeler subscription/17.0.0.1
version/ibm spss modeler subscription/17.1.0.0