Medium severity4.3NVD Advisory· Published Jan 1, 2016· Updated May 6, 2026

CVE-2015-7445

Description

IBM Multi-Enterprise Integration Gateway 1.0 through 1.0.0.1 and B2B Advanced Communications 1.x before 1.0.0.4, when guest access is configured, allow remote authenticated users to obtain sensitive information by reading error messages in responses.

Affected products

IBM/B2b Advanced Communications4 versions
cpe:2.3:a:ibm:b2b_advanced_communications:1.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:b2b_advanced_communications:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:b2b_advanced_communications:1.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:b2b_advanced_communications:1.0.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:b2b_advanced_communications:1.0.0.3:*:*:*:*:*:*:*
IBM/Multi Enterprise Integration Gateway
cpe:2.3:a:ibm:multi-enterprise_integration_gateway:1.0.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www-01.ibm.com/support/docview.wssnvdVendor Advisory
www-01.ibm.com/support/docview.wssnvd
www.securityfocus.com/bid/79681nvd

News mentions

No linked articles in our index yet.

cvss	0.280
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000