CVE-2011-1032

Опубликовано: 15 фев. 2011

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

IBM Lotus Connections 3.0, when IBM WebSphere Application Server 7.0.0.11 is used, does not properly restrict access to the internal login module, which has unspecified impact and attack vectors.

Ссылки

http://osvdb.org/70931
http://secunia.com/advisories/43298
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1PK54565
http://www.ibm.com/support/docview.wss?uid=swg21462435
http://www.vupen.com/english/advisories/2011/0382
http://osvdb.org/70931
http://secunia.com/advisories/43298
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1PK54565
http://www.ibm.com/support/docview.wss?uid=swg21462435
http://www.vupen.com/english/advisories/2011/0382

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:ibm:lotus_connections:3.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:7.0.0.11:*:*:*:*:*:*:*

EPSS

Процентиль: 61%

0.00415

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-qc3q-2v3g-8x48

github

больше 3 лет назад