Vulnerability Database

300,445

Total vulnerabilities in the database

CVE-2014-0946

The RES Console in Rule Execution Server in IBM Operational Decision Manager 7.5 before FP3 IF37, 8.0 before MP1 FP2, and 8.5 before MP1 IF26 does not send appropriate Cache-Control HTTP headers, which allows remote attackers to obtain sensitive information by leveraging an unattended workstation.

Published: May 9, 2014
Updated: Nov 9, 2025
CVE: CVE-2014-0946
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
ibm / operational_decision_manager	8.0	8.0.x
ibm / operational_decision_manager	8.5	8.5.x
ibm / operational_decision_manager	7.5	7.5.x

http://www-01.ibm.com/support/docview.wss?uid=swg21671324
https://exchange.xforce.ibmcloud.com/vulnerabilities/92573

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo