Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2011-1560
HistoryApr 05, 2011 - 3:19 p.m.

CVE-2011-1560

2011-04-0515:19:34
CWE-255
mitre
web.nvd.nist.gov
24
ibm
soliddb
cve-2011-1560
authentication bypass
password-hash
security vulnerability
nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

0.013

Percentile

86.0%

JSON

solid.exe in IBM solidDB before 4.5.181, 6.0.x before 6.0.1067, 6.1.x and 6.3.x before 6.3.47, and 6.5.x before 6.5.0.3 uses a password-hash length specified by the client, which allows remote attackers to bypass authentication via a short length value.

Affected configurations

Nvd
Node
ibmsoliddbRange4.5.180
OR
ibmsoliddbMatch4.5.167
OR
ibmsoliddbMatch4.5.168
OR
ibmsoliddbMatch4.5.169
OR
ibmsoliddbMatch4.5.173
OR
ibmsoliddbMatch4.5.175
OR
ibmsoliddbMatch4.5.176
OR
ibmsoliddbMatch4.5.178
OR
ibmsoliddbMatch4.5.179
Node
ibmsoliddbMatch6.0.1060
OR
ibmsoliddbMatch6.0.1061
OR
ibmsoliddbMatch6.0.1064
OR
ibmsoliddbMatch6.0.1065
OR
ibmsoliddbMatch6.0.1066
OR
ibmsoliddbMatch6.1
OR
ibmsoliddbMatch6.1.18
OR
ibmsoliddbMatch6.1.20
OR
ibmsoliddbMatch6.3.33
OR
ibmsoliddbMatch6.3.37
OR
ibmsoliddbMatch6.3.38
OR
ibmsoliddbMatch6.5.0.0
OR
ibmsoliddbMatch6.5.0.1
OR
ibmsoliddbMatch6.5.0.2
OR
ibmsoliddbMatch6.30.0039
OR
ibmsoliddbMatch6.30.0040
OR
ibmsoliddbMatch6.30.0044
VendorProductVersionCPE
ibmsoliddb*cpe:2.3:a:ibm:soliddb:*:*:*:*:*:*:*:*
ibmsoliddb4.5.167cpe:2.3:a:ibm:soliddb:4.5.167:*:*:*:*:*:*:*
ibmsoliddb4.5.168cpe:2.3:a:ibm:soliddb:4.5.168:*:*:*:*:*:*:*
ibmsoliddb4.5.169cpe:2.3:a:ibm:soliddb:4.5.169:*:*:*:*:*:*:*
ibmsoliddb4.5.173cpe:2.3:a:ibm:soliddb:4.5.173:*:*:*:*:*:*:*
ibmsoliddb4.5.175cpe:2.3:a:ibm:soliddb:4.5.175:*:*:*:*:*:*:*
ibmsoliddb4.5.176cpe:2.3:a:ibm:soliddb:4.5.176:*:*:*:*:*:*:*
ibmsoliddb4.5.178cpe:2.3:a:ibm:soliddb:4.5.178:*:*:*:*:*:*:*
ibmsoliddb4.5.179cpe:2.3:a:ibm:soliddb:4.5.179:*:*:*:*:*:*:*
ibmsoliddb6.0.1060cpe:2.3:a:ibm:soliddb:6.0.1060:*:*:*:*:*:*:*
Rows per page:
1-10 of 261

Related

openvas 2
cvelist 1
checkpoint_advisories 1
prion 1
nvd 1
nessus 1
openvas
openvas
IBM solidDB User Authentication Bypass Vulnerability
2011-05-18 00:00:00
IBM solidDB User Authentication Bypass Vulnerability
2011-05-18 00:00:00
cvelist
cvelist
CVE-2011-1560
2011-04-05 15:00:00
checkpoint_advisories
checkpoint_advisories
IBM solidDB solid.exe Authentication Bypass (CVE-2011-1560)
2011-05-16 00:00:00
prion
prion
Authentication flaw
2011-04-05 15:19:00
nvd
nvd
CVE-2011-1560
2011-04-05 15:19:34
nessus
nessus
IBM solidDB Password Hash Length Authentication Bypass
2011-04-08 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

0.013

Percentile

86.0%

JSON
Related for CVE-2011-1560
openvas2cvelist1checkpoint_advisories1prion1nvd1nessus1