4 matches found
Security Bulletin: Potential Security exposure with WebSphere Application Server (CVE-2014-3070)
Summary There is a potential bypass security vulnerability in WebSphere Application Server Version 8.0 and higher with Virtual Member Manager VMM. Vulnerability Details CVEID: CVE-2014-3070 Description: WebSphere Application Server could allow a remote attacker to bypass security restrictions...
IBM WebSphere Application Server Security Bypass Vulnerability (swg21681249)
IBM WebSphere Application Server is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2014-3070
The addFileRegistryAccount Virtual Member Manager VMM SPI Admin Task in IBM WebSphere Application Server WAS 8.0.x before 8.0.0.10 and 8.5.x before 8.5.5.3 does not properly create accounts, which allows remote attackers to bypass intended access restrictions via unspecified vectors...
CVE-2014-3070
The addFileRegistryAccount Virtual Member Manager VMM SPI Admin Task in IBM WebSphere Application Server WAS 8.0.x before 8.0.0.10 and 8.5.x before 8.5.5.3 does not properly create accounts, which allows remote attackers to bypass intended access restrictions via unspecified vectors...