CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
51.2%
Multiple cross-site request forgery (CSRF) vulnerabilities in IBM WebSphere Service Registry and Repository (WSRR) 6.3.x before 6.3.0.5, 7.0.x before 7.0.0.5, 7.5.x before 7.5.0.3, and 8.0.x before 8.0.0.2 allow remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | websphere_service_registry_and_repository | 6.3.0 | cpe:2.3:a:ibm:websphere_service_registry_and_repository:6.3.0:*:*:*:*:*:*:* |
ibm | websphere_service_registry_and_repository | 6.3.0.1 | cpe:2.3:a:ibm:websphere_service_registry_and_repository:6.3.0.1:*:*:*:*:*:*:* |
ibm | websphere_service_registry_and_repository | 6.3.0.2 | cpe:2.3:a:ibm:websphere_service_registry_and_repository:6.3.0.2:*:*:*:*:*:*:* |
ibm | websphere_service_registry_and_repository | 6.3.0.3 | cpe:2.3:a:ibm:websphere_service_registry_and_repository:6.3.0.3:*:*:*:*:*:*:* |
ibm | websphere_service_registry_and_repository | 6.3.0.4 | cpe:2.3:a:ibm:websphere_service_registry_and_repository:6.3.0.4:*:*:*:*:*:*:* |
ibm | websphere_service_registry_and_repository | 7.0.0 | cpe:2.3:a:ibm:websphere_service_registry_and_repository:7.0.0:*:*:*:*:*:*:* |
ibm | websphere_service_registry_and_repository | 7.0.0.1 | cpe:2.3:a:ibm:websphere_service_registry_and_repository:7.0.0.1:*:*:*:*:*:*:* |
ibm | websphere_service_registry_and_repository | 7.0.0.2 | cpe:2.3:a:ibm:websphere_service_registry_and_repository:7.0.0.2:*:*:*:*:*:*:* |
ibm | websphere_service_registry_and_repository | 7.0.0.3 | cpe:2.3:a:ibm:websphere_service_registry_and_repository:7.0.0.3:*:*:*:*:*:*:* |
ibm | websphere_service_registry_and_repository | 7.0.0.4 | cpe:2.3:a:ibm:websphere_service_registry_and_repository:7.0.0.4:*:*:*:*:*:*:* |
www-01.ibm.com/support/docview.wss?uid=swg1IV26727
www.ibm.com/support/docview.wss?uid=swg21693379
www.ibm.com/support/docview.wss?uid=swg21693381
www.ibm.com/support/docview.wss?uid=swg21693384
www.ibm.com/support/docview.wss?uid=swg21693387
www.securityfocus.com/bid/71906
exchange.xforce.ibmcloud.com/vulnerabilities/98553