5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
Open Source Apache Tomcat Security Manager bypass.
CVE-ID:CVE-2014-7810
**Description:**Apache Tomcat could allow a remote attacker to bypass security restrictions, caused by the use of expression language. An attacker could exploit this vulnerability to bypass the protections of a Security Manager.
**CVSS Base Score:**5.0 **CVSS Temporal Score: **See https://exchange.xforce.ibmcloud.com/vulnerabilities/103155 for the current score **CVSS Environmental Score:***Undefined **CVSS Vector:**AV:N/AC:L/Au:N/C:N/I:P/A:N
ยท IBM QRadar 7.2.n
ยท IBM QRadar 7.1.n
ยท IBM QRadar/QRM/QVM/QRIF 7.2.5 Patch 5
ยท IBM QRadar SIEM 7.1 MR2 Patch 11 Interim Fix 3
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm security qradar siem | eq | 7.1 | |
ibm security qradar siem | eq | 7.2 |