CVE-2016-0231 Information

Description

IBM Financial Transaction Manager (FTM) for ACH Services Check Services and Corporate Payment Services (CPS) 3.0.0 before FP12 allows remote authenticated users to obtain sensitive information by reading exception details in error logs.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg1PI56757 http://www-01.ibm.com/support/docview.wss?uid=swg1PI56758 http://www-01.ibm.com/support/docview.wss?uid=swg1PI56759 http://www-01.ibm.com/support/docview.wss?uid=swg1PI56762 http://www-01.ibm.com/support/docview.wss?uid=swg1PI56763 http://www-01.ibm.com/support/docview.wss?uid=swg1PI56764 http://www-01.ibm.com/support/docview.wss?uid=swg21976392

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

LOW

Availability Impact

NONE

Base Score

NONE

Base Severity

4.3