Lucene search

[email protected]CVE-2011-0679

HistoryJan 28, 2011 - 9:00 p.m.

CVE-2011-0679

2011-01-2821:00:31

CWE-200

[email protected]

web.nvd.nist.gov

ibm

websphere portal

cve-2011-0679

vulnerability

nvd

ibm lotus

wcm

quickr

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.4%

JSON

IBM WebSphere Portal 6.0.1.1 through 7.0.0.0, as used in IBM Lotus Web Content Management (WCM) and IBM Lotus Quickr for WebSphere Portal, allows remote attackers to obtain sensitive information via a “modified message.”

Affected configurations

NVD

Node

ibmwebsphere_portalMatch6.0.1.1

ibmwebsphere_portalMatch6.0.1.2

ibmwebsphere_portalMatch6.0.1.3

ibmwebsphere_portalMatch6.0.1.4

ibmwebsphere_portalMatch6.0.1.5

ibmwebsphere_portalMatch6.0.1.6

ibmwebsphere_portalMatch6.0.1.7

ibmwebsphere_portalMatch6.1.0.0

ibmwebsphere_portalMatch6.1.0.1

ibmwebsphere_portalMatch6.1.0.2

ibmwebsphere_portalMatch6.1.0.3

ibmwebsphere_portalMatch6.1.5.0

ibmwebsphere_portalMatch7.0.0.0

CPENameOperatorVersion
ibm:websphere_portalibm websphere portaleq6.0.1.1
ibm:websphere_portalibm websphere portaleq6.0.1.2
ibm:websphere_portalibm websphere portaleq6.0.1.3
ibm:websphere_portalibm websphere portaleq6.0.1.4
ibm:websphere_portalibm websphere portaleq6.0.1.5
ibm:websphere_portalibm websphere portaleq6.0.1.6
ibm:websphere_portalibm websphere portaleq6.0.1.7
ibm:websphere_portalibm websphere portaleq6.1.0.0
ibm:websphere_portalibm websphere portaleq6.1.0.1
ibm:websphere_portalibm websphere portaleq6.1.0.2

CPE	Name	Operator	Version
ibm:websphere_portal	ibm websphere portal	eq	6.0.1.1
ibm:websphere_portal	ibm websphere portal	eq	6.0.1.2
ibm:websphere_portal	ibm websphere portal	eq	6.0.1.3
ibm:websphere_portal	ibm websphere portal	eq	6.0.1.4
ibm:websphere_portal	ibm websphere portal	eq	6.0.1.5
ibm:websphere_portal	ibm websphere portal	eq	6.0.1.6
ibm:websphere_portal	ibm websphere portal	eq	6.0.1.7
ibm:websphere_portal	ibm websphere portal	eq	6.1.0.0
ibm:websphere_portal	ibm websphere portal	eq	6.1.0.1
ibm:websphere_portal	ibm websphere portal	eq	6.1.0.2

Rows per page:

1-10 of 131

References

osvdb.org/70688

secunia.com/advisories/43081

www-01.ibm.com/support/docview.wss?uid=swg1PM22159

www-01.ibm.com/support/docview.wss?uid=swg1PM22167

www-01.ibm.com/support/docview.wss?uid=swg1PM24319

www-01.ibm.com/support/docview.wss?uid=swg1PM24320

www-01.ibm.com/support/docview.wss?uid=swg1PM25191

www-01.ibm.com/support/docview.wss?uid=swg1PM25698

www-01.ibm.com/support/docview.wss?uid=swg1PM26397

www.ibm.com/support/docview.wss?uid=swg21460422

www.kb.cert.org/vuls/id/375127

www.securityfocus.com/bid/45989

www.vupen.com/english/advisories/2011/0223

exchange.xforce.ibmcloud.com/vulnerabilities/64890

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.4%

JSON

Related for CVE-2011-0679

prion1 nvd1 cvelist1