IBM Security Bulletin: IBM Tealeaf Customer Experience allows via unencrypted GET request (CVE-2015-4990)

The IBM Tealeaf Customer Experience portal allows a user to authenticate via means that could result in exposure of credentials. CVE(s): CVE-2015-4990 Affected product(s) and affected version(s): IBM Tealeaf Customer Experience v8.0-v9.0.2...

from IBM Product Security Incident Response Team http://ift.tt/1UJ3rq0