Code injection

2008-01-1002:46:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.6%

JSON

Unspecified vulnerability in the Administrative Console in IBM WebSphere Application Server 6.1 before Fix Pack 13 has unknown impact and attack vectors, related to “security concerns with monitor role users.” NOTE: it was later reported that 6.0.2 before Fix Pack 25 is also affected.

CPENameOperatorVersion
websphere_application_servereq6.1
websphere_application_servereq6.1.0.2
websphere_application_servereq6.1.0.11
websphere_application_servereq6.1.0.9
websphere_application_servereq6.1.0.1
websphere_application_servereq6.1.0.7
websphere_application_servereq6.1.0.3
websphere_application_serverle6.0.2.24
websphere_application_servereq6.1.0.5

Name	Operator	Version
websphere_application_server	eq	6.1
websphere_application_server	eq	6.1.0.2
websphere_application_server	eq	6.1.0.11
websphere_application_server	eq	6.1.0.9
websphere_application_server	eq	6.1.0.1
websphere_application_server	eq	6.1.0.7
websphere_application_server	eq	6.1.0.3
websphere_application_server	le	6.0.2.24
websphere_application_server	eq	6.1.0.5