10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
WebSphere Application Server that is provided with WebSphere Enterprise Service Bus Registry Edition could allow a remote attacker to execute arbitrary code by connecting to a management port and executing a specific sequence of instructions.
The vulnerability is fixed with an available interim fix. For more information on the fix see Security Bulletin: Security Vulnerability in IBM WebSphere Application Server (CVE-2015-1920)
WebSphere Enterprise Service Bus Registry Edition (All Versions)
None
CPE | Name | Operator | Version |
---|---|---|---|
websphere enterprise service bus registry edition | eq | any |