7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Tivoli Integrated Portal (TIP) & embedded Websphere Application Server (eWAS) is shipped as a component of Tivoli Business Service Manager. Information about a security vulnerability affecting Tivoli Integrated Portal (TIP) & embedded Websphere Application Server (eWAS) has been published in a security bulletin.
Please consult the security bulletin Security Bulletin: ClassLoader manipulation with Apache Struts affecting Tivoli Integrated Portal (CVE-2014-0114) for vulnerability details.
Principal Product and Version(s)
| Affected Supporting Product and Version
—|—
Tivoli Business Service Manager 4.2.0; 4.2.1|**Tivoli Integrated Portal (TIP)**1.x Tivoli Business Service Manager6.1.0; 6.1.1| Tivoli Integrated Portal (TIP) 2.x