Lucene search

[email protected]CVE-2015-7419

HistoryNov 14, 2015 - 3:59 a.m.

CVE-2015-7419

2015-11-1403:59:06

CWE-399

[email protected]

web.nvd.nist.gov

cve-2015-7419

ibm websphere portal

denial of service

memory consumption

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.6 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.5%

JSON

IBM WebSphere Portal 8.0.0.1 before CF19 and 8.5.0 before CF09 allows remote attackers to cause a denial of service (memory consumption) via crafted requests.

Affected configurations

NVD

Node

ibmwebsphere_portalMatch8.0.0.1

ibmwebsphere_portalMatch8.0.0.1cf04

ibmwebsphere_portalMatch8.0.0.1cf05

ibmwebsphere_portalMatch8.0.0.1cf06

ibmwebsphere_portalMatch8.0.0.1cf07

ibmwebsphere_portalMatch8.0.0.1cf08

ibmwebsphere_portalMatch8.0.0.1cf09

ibmwebsphere_portalMatch8.0.0.1cf10

ibmwebsphere_portalMatch8.0.0.1cf11

ibmwebsphere_portalMatch8.0.0.1cf12

ibmwebsphere_portalMatch8.0.0.1cf13

ibmwebsphere_portalMatch8.0.0.1cf14

ibmwebsphere_portalMatch8.0.0.1cf15

ibmwebsphere_portalMatch8.0.0.1cf16

ibmwebsphere_portalMatch8.0.0.1cf17

ibmwebsphere_portalMatch8.0.0.1cf18

ibmwebsphere_portalMatch8.5.0.0

ibmwebsphere_portalMatch8.5.0.0cf1

ibmwebsphere_portalMatch8.5.0.0cf2

ibmwebsphere_portalMatch8.5.0.0cf3

ibmwebsphere_portalMatch8.5.0.0cf4

ibmwebsphere_portalMatch8.5.0.0cf5

ibmwebsphere_portalMatch8.5.0.0cf6

ibmwebsphere_portalMatch8.5.0.0cf7

ibmwebsphere_portalMatch8.5.0.0cf8

CPENameOperatorVersion
ibm:websphere_portalibm websphere portaleq8.0.0.1
ibm:websphere_portalibm websphere portaleq8.5.0.0

CPE	Name	Operator	Version
ibm:websphere_portal	ibm websphere portal	eq	8.0.0.1
ibm:websphere_portal	ibm websphere portal	eq	8.5.0.0

References

www-01.ibm.com/support/docview.wss?uid=swg1PI50952

www-01.ibm.com/support/docview.wss?uid=swg21969906

www.securitytracker.com/id/1034146

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.6 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.5%

JSON

Related for CVE-2015-7419

prion1 cvelist1 nessus1 nvd1 openvas1