Boletines de Vulnerabilidades

IBM Security Bulletin: Infosphere BigInsights is affected by a vulnerability that could allow a local attacker to obtain the value-add services passwords stored in the Ambari configuration file (CVE-2

Información sobre el sistema
   
Software afectado IBM

Descripción
Infosphere BigInsights is affected by a vulnerability that could allow a local attacker to obtain value-add services passwords stored in the Ambari configuration file. The passwords are shown in plain text (CVE-2015-4928, CVE-2015-4940). CVE(s): CVE-2015-4928 and CVE-2015-4940 Affected product(s) and affected version(s): IBM InfoSphere BigInsights: 4.0 Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin:

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_infosphere_biginsights_is_affected_by_a_vulnerability_that_could_allow_a_local_attacker_to_obtain_the_value_add_services_passwords_stored_in_the_ambari_configuration_file_cve

Identificadores estándar
Propiedad Valor
CVE

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2015-11-05

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT