Lucene search

[email protected]NVD:CVE-2009-0897

HistoryMay 21, 2009 - 3:30 p.m.

CVE-2009-0897

2009-05-2115:30:01

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

AI Score

5.5

Confidence

Low

EPSS

0.001

Percentile

43.7%

JSON

IBM WebSphere Partner Gateway (WPG) 6.1.0 before 6.1.0.1 and 6.1.1 before 6.1.1.1 allows remote authenticated users to obtain sensitive information via vectors related to the “schema DB2 instance id” and the bcgarchive (aka the archiver script).

Affected configurations

Nvd

Node

ibmwebsphere_partner_gatewayMatch6.1.0

ibmwebsphere_partner_gatewayMatch6.1.1

VendorProductVersionCPE
ibmwebsphere_partner_gateway6.1.0cpe:2.3:a:ibm:websphere_partner_gateway:6.1.0:*:*:*:*:*:*:*
ibmwebsphere_partner_gateway6.1.1cpe:2.3:a:ibm:websphere_partner_gateway:6.1.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	websphere_partner_gateway	6.1.0	cpe:2.3:a:ibm:websphere_partner_gateway:6.1.0:::::::*
ibm	websphere_partner_gateway	6.1.1	cpe:2.3:a:ibm:websphere_partner_gateway:6.1.1:::::::*

References

www-01.ibm.com/support/docview.wss?uid=swg21366016

www.securityfocus.com/bid/35136

exchange.xforce.ibmcloud.com/vulnerabilities/50643

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

AI Score

5.5

Confidence

Low

EPSS

0.001

Percentile

43.7%

JSON

Related for NVD:CVE-2009-0897

cvelist1 prion1 cve1