CVSS: 5.3EPSS: 0%CPEs: 19EXPL: 0CVE-2016-2961
https://notcve.org/view.php?id=CVE-2016-2961
02 Jul 2016 — The integration server in IBM Integration Bus 9 before 9.0.0.6 and 10 before 10.0.0.5 and WebSphere Message Broker 8 before 8.0.0.8 allows remote attackers to obtain sensitive Tomcat version information by sending a malformed POST request and then reading the Java stack trace. El servidor de integración en IBM Integration Bus 9 en versiones anteriores a 9.0.0.6 y 10 en versiones anteriores a 10.0.0.5 y WebSphere Message Broker 8 en versiones anteriores a 8.0.0.8 permite a atacantes remotos obtener informaci... • http://www-01.ibm.com/support/docview.wss?uid=swg1IT15188 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 18EXPL: 0CVE-2015-7399
https://notcve.org/view.php?id=CVE-2015-7399
11 Jan 2016 — IBM WebSphere Message Broker 7 before 7.0.0.8 and 8 before 8.0.0.6 and IBM Integration Bus 9 before 9.0.0.3 and 10 before 10.0.0.0 allow remote attackers to obtain sensitive information about the HTTP server via unspecified vectors. IBM WebSphere Message Broker 7 en versiones anteriores a 7.0.0.8 y 8 en versiones anteriores a 8.0.0.6 y IBM Integration Bus 9 en versiones anteriores a 9.0.0.3 y 10 en versiones anteriores a 10.0.0.0 permiten a atacantes remotos obtener información sensible acerca del servidor ... • http://www-01.ibm.com/support/docview.wss?uid=swg1IC99031 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.3EPSS: 0%CPEs: 17EXPL: 0CVE-2015-2018
https://notcve.org/view.php?id=CVE-2015-2018
23 Aug 2015 — IBM Integration Bus 9 and 10 before 10.0.0.1 and WebSphere Message Broker 7 before 7.0.0.8 and 8 before 8.0.0.7 do not ensure that the correct security profile is selected, which allows remote authenticated users to obtain sensitive information via unspecified vectors. Vulnerabilidad en IBM Integration Bus 9 y 10 en versiones anteriores a 10.0.0.1 y WebSphere Message Broker 7 en versiones anteriores a 7.0.0.8 y 8 en versiones anteriores a 8.0.0.7 no asegura que sea seleccionado el perfil de seguridad correc... • http://www-01.ibm.com/support/docview.wss?uid=swg1IT07773 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •