CVE-2014-4804 Information

Description

Curam Universal Access in IBM Curam Social Program Management 5.2 before SP6 EP6 6.0 SP2 before EP26 6.0.4.5 before iFix007 6.0.5.4 before iFix005 and 6.0.5.5 before iFix003 when SPI inclusion is enabled allows remote attackers to obtain sensitive user data by visiting an unspecified page.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg21695931 https://exchange.xforce.ibmcloud.com/vulnerabilities/95306