Arbitrary Chart Reading Vulnerability in IBM Tealeaf Customer Experience

Arbitrary Chart Reading Vulnerability in IBM Tealeaf Customer Experience

CVE-2015-4989 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The portal in IBM Tealeaf Customer Experience before 8.7.1.8814, 8.8 before 8.8.0.9026, 9.0.0, 9.0.0A, 9.0.1 before 9.0.1.1083, 9.0.1A before 9.0.1.5073, 9.0.2 before 9.0.2.1095, and 9.0.2A before 9.0.2.5144 allows remote attackers to read arbitrary charts by specifying an internal chart name.

Learn more about our Cis Benchmark Audit For Ibm I.