Lucene search

[email protected]CVE-2009-2750

HistoryFeb 04, 2010 - 8:15 p.m.

CVE-2009-2750

2010-02-0420:15:23

CWE-16

[email protected]

web.nvd.nist.gov

ibm

wsrr

vulnerability

cve-2009-2750

data access

configuration properties

security advisory

6.2 Medium

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

46.6%

JSON

IBM WebSphere Service Registry and Repository (WSRR) 6.3.0 before FP2 does not have the intended configuration properties, which allows remote authenticated users to obtain unspecified data access via a property query.

Affected configurations

NVD

Node

ibmwebsphere_service_registry_and_repositoryMatch6.3.0

ibmwebsphere_service_registry_and_repositoryMatch6.3.0.1

CPENameOperatorVersion
ibm:websphere_service_registry_and_repositoryibm websphere service registry and repositoryeq6.3.0
ibm:websphere_service_registry_and_repositoryibm websphere service registry and repositoryeq6.3.0.1

CPE	Name	Operator	Version
ibm:websphere_service_registry_and_repository	ibm websphere service registry and repository	eq	6.3.0
ibm:websphere_service_registry_and_repository	ibm websphere service registry and repository	eq	6.3.0.1

References

www-01.ibm.com/support/docview.wss?uid=swg1IZ66279

www-01.ibm.com/support/docview.wss?uid=swg24025456

exchange.xforce.ibmcloud.com/vulnerabilities/55744

6.2 Medium

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

46.6%

JSON

Related for CVE-2009-2750

prion1 nvd1 cvelist1