8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
WebSphere Application Server is shipped with Financial Transaction Manager. Information about security vulnerabilities affecting WebSphere Application Server have been published in a security bulletin.
Refer to the security bulletin
Security Bulletin: Potential security vulnerability in WebSphere Application Server Administrative Console (CVE-2017-1137)
Principal Product and Version(s)
| Affected Supporting Product and Version
—|—
Financial Transaction Manager for MP v2.0.0.0 through 2.0.0.5| WebSphere Application Server 7.0
Financial Transaction Manager for MP v2.1.0.0 through 2.1.0.4| WebSphere Application Server 8.0
Financial Transaction Manager for MP v2.1.1.0 through 2.1.1.4| WebSphere Application Server 8.0
Financial Transaction Manager for MP v3.0.0.0 through 3.0.0.7| WebSphere Application Server 8.5.5
Refer to the following security bulletins for vulnerability details and information about fixes addressed by WebSphere Application Server which is shipped with Financial Transaction Manager.
Principal Product and Version(s) | Affected Supporting Product and Version | Affected Supporting Product Security Bulletin |
---|---|---|
Financial Transaction Manager for MP v2.0.0.0 through 2.0.0.5 | WebSphere Application Server 7.0 | Security Bulletin: Potential security vulnerability in WebSphere Application Server Administrative Console (CVE-2017-1137) |
Financial Transaction Manager for MP v2.1.0.0 through 2.1.0.4 | WebSphere Application Server 8.0 | |
Financial Transaction Manager for MP v2.1.1.0 through 2.1.1.4 | WebSphere Application Server 8.0 | |
Financial Transaction Manager for MP v3.0.0.0 through 3.0.0.7 | WebSphere Application Server 8.5.5 |
None
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P