Lucene search

MitreCVELIST:CVE-2010-2323

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2010-2323

2022-10-0316:21:07

mitre

www.cve.org

ibm

websphere

application server

vulnerability

sensitive information

default_create.log

z/os

5.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

46.1%

JSON

IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.11 on z/OS might allow attackers to obtain sensitive information by reading the default_create.log file that is associated with profile creation by the BBOWWPFx job and the zPMT.

References

secunia.com/advisories/40096

www-01.ibm.com/support/docview.wss?uid=swg1PM10454

www-01.ibm.com/support/docview.wss?uid=swg1PM15830

www.vupen.com/english/advisories/2010/1411