Lucene search

[email protected]NVD:CVE-2010-2644

HistoryDec 22, 2010 - 9:00 p.m.

CVE-2010-2644

2010-12-2221:00:01

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.003

Percentile

69.1%

JSON

IBM WebSphere Service Registry and Repository (WSRR) 7.0.0 before FP1 does not properly implement access control, which allows remote attackers to perform governance actions via unspecified API requests to an EJB interface.

Affected configurations

Nvd

Node

ibmwebsphere_service_registry_and_repositoryMatch7.0.0

VendorProductVersionCPE
ibmwebsphere_service_registry_and_repository7.0.0cpe:2.3:a:ibm:websphere_service_registry_and_repository:7.0.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	websphere_service_registry_and_repository	7.0.0	cpe:2.3:a:ibm:websphere_service_registry_and_repository:7.0.0:::::::*

References

secunia.com/advisories/42742

www-01.ibm.com/support/docview.wss?uid=swg1IZ72563

www-01.ibm.com/support/docview.wss?uid=swg24026132

exchange.xforce.ibmcloud.com/vulnerabilities/63640

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.003

Percentile

69.1%

JSON

Related for NVD:CVE-2010-2644

nessus1 prion1 cve1 cvelist1