Описание
IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 through 8.0.0.1 CF18, and 8.5.0 before CF08 improperly restricts resource access, which allows remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by configuration information.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:websphere_portal:6.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.1.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.1.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.1.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.1.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.0.1.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:6.1.5.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:7.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:7.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:8.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_portal:8.5.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00215
Низкий
5 Medium
CVSS2
Дефекты
CWE-284
Связанные уязвимости
github
больше 3 лет назад
IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 through 8.0.0.1 CF18, and 8.5.0 before CF08 improperly restricts resource access, which allows remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by configuration information.
EPSS
Процентиль: 44%
0.00215
Низкий
5 Medium
CVSS2
Дефекты
CWE-284