Lucene search

[email protected]CVE-2008-2550

HistoryJun 04, 2008 - 8:32 p.m.

CVE-2008-2550

2008-06-0420:32:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2008-2550

web services security

ibm

websphere application server

soap

security

vulnerability

nvd

6.4 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

57.0%

JSON

Unspecified vulnerability in the Web Services Security component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.17 has unknown impact and attack vectors related to an attribute in the SOAP security header.

CPENameOperatorVersion
ibm:websphere_application_serveribm websphere application servereq6.1
ibm:websphere_application_serveribm websphere application servereq6.1.0.2
ibm:websphere_application_serveribm websphere application servereq6.1.0.4
ibm:websphere_application_serveribm websphere application servereq6.1.0.11
ibm:websphere_application_serveribm websphere application servereq6.1.0.14
ibm:websphere_application_serveribm websphere application serverle6.1.0.16
ibm:websphere_application_serveribm websphere application servereq6.1.0.9
ibm:websphere_application_serveribm websphere application servereq6.1.0.0
ibm:websphere_application_serveribm websphere application servereq6.1.0.1
ibm:websphere_application_serveribm websphere application servereq6.1.0.7

CPE	Name	Operator	Version
ibm:websphere_application_server	ibm websphere application server	eq	6.1
ibm:websphere_application_server	ibm websphere application server	eq	6.1.0.2
ibm:websphere_application_server	ibm websphere application server	eq	6.1.0.4
ibm:websphere_application_server	ibm websphere application server	eq	6.1.0.11
ibm:websphere_application_server	ibm websphere application server	eq	6.1.0.14
ibm:websphere_application_server	ibm websphere application server	le	6.1.0.16
ibm:websphere_application_server	ibm websphere application server	eq	6.1.0.9
ibm:websphere_application_server	ibm websphere application server	eq	6.1.0.0
ibm:websphere_application_server	ibm websphere application server	eq	6.1.0.1
ibm:websphere_application_server	ibm websphere application server	eq	6.1.0.7

Rows per page:

1-10 of 191

References

secunia.com/advisories/30526

www-1.ibm.com/support/docview.wss?rs=180&uid=swg27007951

www-1.ibm.com/support/docview.wss?uid=swg1PK61315

www.securitytracker.com/id?1020168

www.vupen.com/english/advisories/2008/1734

exchange.xforce.ibmcloud.com/vulnerabilities/42822

6.4 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

57.0%

JSON

Related for CVE-2008-2550

prion1 nessus1 securityvulns1