Lucene search
IbmCVE-2014-6080HistoryDec 18, 2014 - 4:59 p.m.
CVE-2014-6080
2014-12-1816:59:03
CWE-89
ibm
web.nvd.nist.gov
26
ibm
security access manager
sql injection
cve-2014-6080
nvd
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.001
Percentile
46.3%
SQL injection vulnerability in IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Affected configurations
Node
ibmsecurity_access_manager_for_mobileMatch8.0
Node
ibmsecurity_access_manager_for_webMatch7.0
ORibmsecurity_access_manager_for_webMatch8.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | security_access_manager_for_mobile | 8.0 | cpe:2.3:a:ibm:security_access_manager_for_mobile:8.0:*:*:*:*:*:*:* |
| ibm | security_access_manager_for_web | 7.0 | cpe:2.3:a:ibm:security_access_manager_for_web:7.0:*:*:*:*:*:*:* |
| ibm | security_access_manager_for_web | 8.0 | cpe:2.3:a:ibm:security_access_manager_for_web:8.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2014-6080
2014-12-18 16:00:00
prion
prion
Sql injection
2014-12-18 16:59:00
nvd
nvd
CVE-2014-6080
2014-12-18 16:59:03
ibm
ibm
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.001
Percentile
46.3%
Related for CVE-2014-6080