Lucene search

[email protected]CVE-2014-6076

HistoryDec 18, 2014 - 4:59 p.m.

CVE-2014-6076

2014-12-1816:59:00

CWE-254

[email protected]

web.nvd.nist.gov

ibm

security access manager

clickjacking

vulnerability

cve-2014-6076

nvd

6.7 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

64.3%

JSON

IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allow remote attackers to conduct clickjacking attacks via a crafted web site.

CPENameOperatorVersion
ibm:security_access_manager_for_mobileibm security access manager for mobileeq8.0
ibm:security_access_manager_for_webibm security access manager for webeq8.0
ibm:security_access_manager_for_webibm security access manager for webeq7.0

CPE	Name	Operator	Version
ibm:security_access_manager_for_mobile	ibm security access manager for mobile	eq	8.0
ibm:security_access_manager_for_web	ibm security access manager for web	eq	8.0
ibm:security_access_manager_for_web	ibm security access manager for web	eq	7.0

References

www-01.ibm.com/support/docview.wss?uid=swg1IV67358

www-01.ibm.com/support/docview.wss?uid=swg1IV67581

www-01.ibm.com/support/docview.wss?uid=swg21684475

exchange.xforce.ibmcloud.com/vulnerabilities/95729

6.7 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

64.3%

JSON

Related for CVE-2014-6076

prion1 cvelist1 ibm1