IBM WebSphere Application Server (WAS) Liberty Profile 8.5.x before 8.5.5.2 allows remote attackers to obtain sensitive information via a crafted request.
http://www-01.ibm.com/support/docview.wss?uid=swg1PI10134
http://www-01.ibm.com/support/docview.wss?uid=swg21669554
https://exchange.xforce.ibmcloud.com/vulnerabilities/91326
Source: MITRE
Published: 2014-05-01
Updated: 2017-08-29
Type: CWE-200
Base Score: 4.3
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Impact Score: 2.9
Exploitability Score: 8.6
Severity: MEDIUM