Lucene search

[email protected]CVE-2008-3235

HistoryJul 21, 2008 - 4:41 p.m.

CVE-2008-3235

2008-07-2116:41:00

CWE-255

[email protected]

web.nvd.nist.gov

ibm

websphere

application server

security

vulnerability

cve-2008-3235

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.8%

JSON

Unspecified vulnerability in the PropFilePasswordEncoder utility in the Security component in IBM WebSphere Application Server (WAS) 5.1 before 5.1.1.19 has unknown impact and attack vectors.

Affected configurations

NVD

Node

ibmwebsphere_application_serverMatch5.1.0

ibmwebsphere_application_serverMatch5.1.1

ibmwebsphere_application_serverMatch5.1.1.1

ibmwebsphere_application_serverMatch5.1.1.2

ibmwebsphere_application_serverMatch5.1.1.3

ibmwebsphere_application_serverMatch5.1.1.4

ibmwebsphere_application_serverMatch5.1.1.5

ibmwebsphere_application_serverMatch5.1.1.6

ibmwebsphere_application_serverMatch5.1.1.7

ibmwebsphere_application_serverMatch5.1.1.8

ibmwebsphere_application_serverMatch5.1.1.9

ibmwebsphere_application_serverMatch5.1.1.10

ibmwebsphere_application_serverMatch5.1.1.11

ibmwebsphere_application_serverMatch5.1.1.12

ibmwebsphere_application_serverMatch5.1.1.13

ibmwebsphere_application_serverMatch5.1.1.14

ibmwebsphere_application_serverMatch5.1.1.15

ibmwebsphere_application_serverMatch5.1.1.16

ibmwebsphere_application_serverMatch5.1.1.17

ibmwebsphere_application_serverMatch5.1.1.18

CPENameOperatorVersion
ibm:websphere_application_serveribm websphere application servereq5.1.0
ibm:websphere_application_serveribm websphere application servereq5.1.1
ibm:websphere_application_serveribm websphere application servereq5.1.1.1
ibm:websphere_application_serveribm websphere application servereq5.1.1.2
ibm:websphere_application_serveribm websphere application servereq5.1.1.3
ibm:websphere_application_serveribm websphere application servereq5.1.1.4
ibm:websphere_application_serveribm websphere application servereq5.1.1.5
ibm:websphere_application_serveribm websphere application servereq5.1.1.6
ibm:websphere_application_serveribm websphere application servereq5.1.1.7
ibm:websphere_application_serveribm websphere application servereq5.1.1.8

CPE	Name	Operator	Version
ibm:websphere_application_server	ibm websphere application server	eq	5.1.0
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.1
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.2
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.3
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.4
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.5
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.6
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.7
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.8

Rows per page:

1-10 of 201

References

secunia.com/advisories/31149

www-1.ibm.com/support/docview.wss?uid=swg1PK61436

www-1.ibm.com/support/docview.wss?uid=swg27006879

www.securityfocus.com/bid/30280

www.securitytracker.com/id?1020528

www.vupen.com/english/advisories/2008/2140/references

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.8%

JSON

Related for CVE-2008-3235

cvelist1 prion1 nvd1