Lucene search

[email protected]NVD:CVE-2015-2018

HistoryAug 23, 2015 - 3:59 p.m.

CVE-2015-2018

2015-08-2315:59:00

CWE-200

[email protected]

web.nvd.nist.gov

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

5.6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

34.4%

JSON

IBM Integration Bus 9 and 10 before 10.0.0.1 and WebSphere Message Broker 7 before 7.0.0.8 and 8 before 8.0.0.7 do not ensure that the correct security profile is selected, which allows remote authenticated users to obtain sensitive information via unspecified vectors.

Affected configurations

NVD

Node

ibmintegration_busMatch9.0

ibmintegration_busMatch10.0

ibmwebsphere_message_brokerMatch7.0.

ibmwebsphere_message_brokerMatch7.0.0.1

ibmwebsphere_message_brokerMatch7.0.0.2

ibmwebsphere_message_brokerMatch7.0.0.3

ibmwebsphere_message_brokerMatch7.0.0.4

ibmwebsphere_message_brokerMatch7.0.0.5

ibmwebsphere_message_brokerMatch7.0.0.6

ibmwebsphere_message_brokerMatch7.0.0.7

ibmwebsphere_message_brokerMatch8.0

ibmwebsphere_message_brokerMatch8.0.0.1

ibmwebsphere_message_brokerMatch8.0.0.2

ibmwebsphere_message_brokerMatch8.0.0.3

ibmwebsphere_message_brokerMatch8.0.0.4

ibmwebsphere_message_brokerMatch8.0.0.5

ibmwebsphere_message_brokerMatch8.0.0.6

References

www-01.ibm.com/support/docview.wss?uid=swg1IT07773

www-01.ibm.com/support/docview.wss?uid=swg21961734

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

5.6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

34.4%

JSON

Related for NVD:CVE-2015-2018

cve1 cvelist1 prion1