Lucene search
HistoryDec 24, 2014 - 11:59 a.m.
CVE-2014-6155
ibm
wsrr
directory traversal
vulnerability
cve-2014-6155
nvd
ibm websphere service registry and repository
serviceregistry ui
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.3 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
60.8%
Multiple directory traversal vulnerabilities in the ServiceRegistry UI in IBM WebSphere Service Registry and Repository (WSRR) 7.5.x through 7.5.0.4, 8.0.x before 8.0.0.3, and 8.5.x before 8.5.0.1 allow remote authenticated users to read arbitrary files via unspecified vectors.
Affected configurations
Node
ibmwebsphere_service_registry_and_repositoryMatch7.5.0.0
ORibmwebsphere_service_registry_and_repositoryMatch7.5.0.1
ORibmwebsphere_service_registry_and_repositoryMatch7.5.0.2
ORibmwebsphere_service_registry_and_repositoryMatch7.5.0.3
ORibmwebsphere_service_registry_and_repositoryMatch7.5.0.4
ORibmwebsphere_service_registry_and_repositoryMatch8.0
ORibmwebsphere_service_registry_and_repositoryMatch8.0.0.1
ORibmwebsphere_service_registry_and_repositoryMatch8.0.0.2
ORibmwebsphere_service_registry_and_repositoryMatch8.5
Related
cvelist
cvelist
CVE-2014-6155
2014-12-24 11:00:00
nvd
nvd
CVE-2014-6155
2014-12-24 11:59:03
prion
prion
Directory traversal
2014-12-24 11:59:00
ibm
ibm
nessus
nessus
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.3 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
60.8%
Related for CVE-2014-6155