Description

IBM InfoSphere DataStage Flow Designer in IBM InfoSphere Information Server 11.7 discloses sensitive user information in API requests in clear text that could be intercepted using man in the middle techniques.

Related CPE's

a

ibm

infosphere_information_server

11.7

Vulnerable

References

https://www.ibm.com/support/pages/node/7237604

Vendor Advisory

Weaknesses

[email protected]

Secondary
CWE-319

CVSS impact metrics

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

5.3 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2025-06-26T16:15:28.567

5 months ago

Last modified

2025-08-14T20:57:36.537

4 months ago