Lucene search

[email protected]NVD:CVE-2010-3471

HistorySep 20, 2010 - 10:00 p.m.

CVE-2010-3471

2010-09-2022:00:03

CWE-287

[email protected]

web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.4 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.9%

JSON

Session fixation vulnerability in the Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 4.0.2.x before 4.0.2.7-P8AE-FP007 allows remote attackers to hijack web sessions via unspecified vectors.

Affected configurations

NVD

Node

ibmfilenet_p8_application_engineMatch4.0.2

ibmfilenet_p8_application_engineMatch4.0.2001

ibmfilenet_p8_application_engineMatch4.0.2002

ibmfilenet_p8_application_engineMatch4.0.2003

ibmfilenet_p8_application_engineMatch4.0.2004

ibmfilenet_p8_application_engineMatch4.0.2005

ibmfilenet_p8_application_engineMatch4.0.2006

References

download2.boulder.ibm.com/sar/CMA/IMA/00y3y/0/readme-4027-P8AE-FP007.htm

secunia.com/advisories/41460

www-01.ibm.com/support/docview.wss?uid=swg1PJ37346

www.securityfocus.com/bid/43271

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.4 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.9%

JSON

Related for NVD:CVE-2010-3471

prion1 cvelist1 cve1