Lucene search

[email protected]NVD:CVE-2014-0959

HistoryMay 22, 2014 - 11:14 a.m.

CVE-2014-0959

2014-05-2211:14:14

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

Confidence

High

EPSS

0.003

Percentile

69.4%

JSON

IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF28, and 8.0 before 8.0.0.1 CF12 allows remote authenticated users to cause a denial of service (infinite loop) via a login redirect.

Affected configurations

Nvd

Node

ibmwebsphere_portalMatch6.1.0.0

ibmwebsphere_portalMatch6.1.0.1

ibmwebsphere_portalMatch6.1.0.2

ibmwebsphere_portalMatch6.1.0.3

ibmwebsphere_portalMatch6.1.0.4

ibmwebsphere_portalMatch6.1.0.5

ibmwebsphere_portalMatch6.1.0.6

ibmwebsphere_portalMatch6.1.0.6cf27

ibmwebsphere_portalMatch6.1.5.0

ibmwebsphere_portalMatch6.1.5.1

ibmwebsphere_portalMatch6.1.5.2

ibmwebsphere_portalMatch6.1.5.3

ibmwebsphere_portalMatch6.1.5.3cf27

ibmwebsphere_portalMatch7.0.0.0

ibmwebsphere_portalMatch7.0.0.0cf001

ibmwebsphere_portalMatch7.0.0.1

ibmwebsphere_portalMatch7.0.0.1cf002

ibmwebsphere_portalMatch7.0.0.1cf003

ibmwebsphere_portalMatch7.0.0.1cf004

ibmwebsphere_portalMatch7.0.0.1cf005

ibmwebsphere_portalMatch7.0.0.1cf006

ibmwebsphere_portalMatch7.0.0.1cf007

ibmwebsphere_portalMatch7.0.0.1cf008

ibmwebsphere_portalMatch7.0.0.1cf009

ibmwebsphere_portalMatch7.0.0.1cf010

ibmwebsphere_portalMatch7.0.0.1cf019

ibmwebsphere_portalMatch7.0.0.2

ibmwebsphere_portalMatch7.0.0.2cf011

ibmwebsphere_portalMatch7.0.0.2cf012

ibmwebsphere_portalMatch7.0.0.2cf013

ibmwebsphere_portalMatch7.0.0.2cf014

ibmwebsphere_portalMatch7.0.0.2cf015

ibmwebsphere_portalMatch7.0.0.2cf016

ibmwebsphere_portalMatch7.0.0.2cf017

ibmwebsphere_portalMatch7.0.0.2cf018

ibmwebsphere_portalMatch7.0.0.2cf019

ibmwebsphere_portalMatch7.0.0.2cf020

ibmwebsphere_portalMatch7.0.0.2cf021

ibmwebsphere_portalMatch7.0.0.2cf022

ibmwebsphere_portalMatch7.0.0.2cf23

ibmwebsphere_portalMatch7.0.0.2cf24

ibmwebsphere_portalMatch7.0.0.2cf25

ibmwebsphere_portalMatch7.0.0.2cf26

ibmwebsphere_portalMatch7.0.0.2cf27

ibmwebsphere_portalMatch8.0.0.0

ibmwebsphere_portalMatch8.0.0.0cf01

ibmwebsphere_portalMatch8.0.0.0cf02

ibmwebsphere_portalMatch8.0.0.0cf03

ibmwebsphere_portalMatch8.0.0.0cf04

ibmwebsphere_portalMatch8.0.0.0cf05

ibmwebsphere_portalMatch8.0.0.1

ibmwebsphere_portalMatch8.0.0.1cf04

ibmwebsphere_portalMatch8.0.0.1cf05

ibmwebsphere_portalMatch8.0.0.1cf07

ibmwebsphere_portalMatch8.0.0.1cf08

ibmwebsphere_portalMatch8.0.0.1cf09

ibmwebsphere_portalMatch8.0.0.1cf10

ibmwebsphere_portalMatch8.0.0.1cf11

ibmwebsphere_portalMatch8.0.0.1cf12

VendorProductVersionCPE
ibmwebsphere_portal6.1.0.0cpe:2.3:a:ibm:websphere_portal:6.1.0.0:*:*:*:*:*:*:*
ibmwebsphere_portal6.1.0.1cpe:2.3:a:ibm:websphere_portal:6.1.0.1:*:*:*:*:*:*:*
ibmwebsphere_portal6.1.0.2cpe:2.3:a:ibm:websphere_portal:6.1.0.2:*:*:*:*:*:*:*
ibmwebsphere_portal6.1.0.3cpe:2.3:a:ibm:websphere_portal:6.1.0.3:*:*:*:*:*:*:*
ibmwebsphere_portal6.1.0.4cpe:2.3:a:ibm:websphere_portal:6.1.0.4:*:*:*:*:*:*:*
ibmwebsphere_portal6.1.0.5cpe:2.3:a:ibm:websphere_portal:6.1.0.5:*:*:*:*:*:*:*
ibmwebsphere_portal6.1.0.6cpe:2.3:a:ibm:websphere_portal:6.1.0.6:*:*:*:*:*:*:*
ibmwebsphere_portal6.1.0.6cpe:2.3:a:ibm:websphere_portal:6.1.0.6:cf27:*:*:*:*:*:*
ibmwebsphere_portal6.1.5.0cpe:2.3:a:ibm:websphere_portal:6.1.5.0:*:*:*:*:*:*:*
ibmwebsphere_portal6.1.5.1cpe:2.3:a:ibm:websphere_portal:6.1.5.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	websphere_portal	6.1.0.0	cpe:2.3:a:ibm:websphere_portal:6.1.0.0:::::::*
ibm	websphere_portal	6.1.0.1	cpe:2.3:a:ibm:websphere_portal:6.1.0.1:::::::*
ibm	websphere_portal	6.1.0.2	cpe:2.3:a:ibm:websphere_portal:6.1.0.2:::::::*
ibm	websphere_portal	6.1.0.3	cpe:2.3:a:ibm:websphere_portal:6.1.0.3:::::::*
ibm	websphere_portal	6.1.0.4	cpe:2.3:a:ibm:websphere_portal:6.1.0.4:::::::*
ibm	websphere_portal	6.1.0.5	cpe:2.3:a:ibm:websphere_portal:6.1.0.5:::::::*
ibm	websphere_portal	6.1.0.6	cpe:2.3:a:ibm:websphere_portal:6.1.0.6:::::::*
ibm	websphere_portal	6.1.0.6	cpe:2.3:a:ibm:websphere_portal:6.1.0.6:cf27::::::
ibm	websphere_portal	6.1.5.0	cpe:2.3:a:ibm:websphere_portal:6.1.5.0:::::::*
ibm	websphere_portal	6.1.5.1	cpe:2.3:a:ibm:websphere_portal:6.1.5.1:::::::*

Rows per page:

1-10 of 591

References

www-01.ibm.com/support/docview.wss?uid=swg1PI16462

www-01.ibm.com/support/docview.wss?uid=swg21672572

exchange.xforce.ibmcloud.com/vulnerabilities/92741

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

Confidence

High

EPSS

0.003

Percentile

69.4%

JSON

Related for NVD:CVE-2014-0959

nessus3 cvelist1 prion1 cve1