CVE-2008-2550

2008-06-0420:32:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.2

Confidence

High

EPSS

0.002

Percentile

57.4%

JSON

Unspecified vulnerability in the Web Services Security component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.17 has unknown impact and attack vectors related to an attribute in the SOAP security header.

Affected configurations

Nvd

Node

ibmwebsphere_application_serverRange≤6.1.0.16

ibmwebsphere_application_serverMatch6.1

ibmwebsphere_application_serverMatch6.1.0

ibmwebsphere_application_serverMatch6.1.0.0

ibmwebsphere_application_serverMatch6.1.0.1

ibmwebsphere_application_serverMatch6.1.0.2

ibmwebsphere_application_serverMatch6.1.0.3

ibmwebsphere_application_serverMatch6.1.0.4

ibmwebsphere_application_serverMatch6.1.0.5

ibmwebsphere_application_serverMatch6.1.0.6

ibmwebsphere_application_serverMatch6.1.0.7

ibmwebsphere_application_serverMatch6.1.0.8

ibmwebsphere_application_serverMatch6.1.0.9

ibmwebsphere_application_serverMatch6.1.0.10

ibmwebsphere_application_serverMatch6.1.0.11

ibmwebsphere_application_serverMatch6.1.0.12

ibmwebsphere_application_serverMatch6.1.0.13

ibmwebsphere_application_serverMatch6.1.0.14

ibmwebsphere_application_serverMatch6.1.0.15

VendorProductVersionCPE
ibmwebsphere_application_server*cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:*:*:*:*
ibmwebsphere_application_server6.1cpe:2.3:a:ibm:websphere_application_server:6.1:*:*:*:*:*:*:*
ibmwebsphere_application_server6.1.0cpe:2.3:a:ibm:websphere_application_server:6.1.0:*:*:*:*:*:*:*
ibmwebsphere_application_server6.1.0.0cpe:2.3:a:ibm:websphere_application_server:6.1.0.0:*:*:*:*:*:*:*
ibmwebsphere_application_server6.1.0.1cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:*:*:*:*:*:*:*
ibmwebsphere_application_server6.1.0.2cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:*:*:*:*:*:*:*
ibmwebsphere_application_server6.1.0.3cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:*:*:*:*:*:*:*
ibmwebsphere_application_server6.1.0.4cpe:2.3:a:ibm:websphere_application_server:6.1.0.4:*:*:*:*:*:*:*
ibmwebsphere_application_server6.1.0.5cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:*:*:*:*:*:*:*
ibmwebsphere_application_server6.1.0.6cpe:2.3:a:ibm:websphere_application_server:6.1.0.6:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	websphere_application_server	*	cpe:2.3:a:ibm:websphere_application_server::::::::
ibm	websphere_application_server	6.1	cpe:2.3:a:ibm:websphere_application_server:6.1:::::::*
ibm	websphere_application_server	6.1.0	cpe:2.3:a:ibm:websphere_application_server:6.1.0:::::::*
ibm	websphere_application_server	6.1.0.0	cpe:2.3:a:ibm:websphere_application_server:6.1.0.0:::::::*
ibm	websphere_application_server	6.1.0.1	cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:::::::*
ibm	websphere_application_server	6.1.0.2	cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:::::::*
ibm	websphere_application_server	6.1.0.3	cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:::::::*
ibm	websphere_application_server	6.1.0.4	cpe:2.3:a:ibm:websphere_application_server:6.1.0.4:::::::*
ibm	websphere_application_server	6.1.0.5	cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:::::::*
ibm	websphere_application_server	6.1.0.6	cpe:2.3:a:ibm:websphere_application_server:6.1.0.6:::::::*