Lucene search
HistoryApr 27, 2015 - 12:59 p.m.
CVE-2015-0175
cve-2015-0175
ibm websphere
was 8.5
liberty profile
authentication vulnerability
nvd
5.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
49.2%
IBM WebSphere Application Server (WAS) 8.5 Liberty Profile before 8.5.5.5 does not properly implement authData elements, which allows remote authenticated users to gain privileges via unspecified vectors.
Affected configurations
Node
ibmwebsphere_application_serverMatch8.5.0.0
ORibmwebsphere_application_serverMatch8.5.0.1
ORibmwebsphere_application_serverMatch8.5.0.2
ORibmwebsphere_application_serverMatch8.5.5.0
ORibmwebsphere_application_serverMatch8.5.5.1
ORibmwebsphere_application_serverMatch8.5.5.2
ORibmwebsphere_application_serverMatch8.5.5.3
ORibmwebsphere_application_serverMatch8.5.5.4
Related
cvelist
cvelist
CVE-2015-0175
2015-04-26 10:00:00
nvd
nvd
CVE-2015-0175
2015-04-27 12:59:01
prion
prion
Code injection
2015-04-27 12:59:00
openvas
openvas
IBM Websphere Application Server Multiple Vulnerabilities-04 (Mar 2016)
2016-03-21 00:00:00
nessus
nessus
IBM WebSphere Application Server 8.5.5.x < 8.5.5.5 Multiple Vulnerabilities
2017-04-04 00:00:00
IBM WebSphere Application Server Multiple Vulnerabilities
2015-05-08 00:00:00
ibm
ibm
5.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
49.2%
Related for CVE-2015-0175