2 matches found
Security Bulletin: Various security issues exist in WebSphere Service Registry and Repository version 8.0
Summary This bulletin describes a variety of minor security issues that have been found and fixed in WebSphere Service Registry and Repository version 8.0 Vulnerability Details CVE ID: CVE-2014-6153 DESCRIPTION: WSRR WEBUI ISSUES A COOKIE WHICH IS NOT DECLARED SSL ONLY. CVSS CVSS Base Score: 2.6...
CVE-2014-6187
CVE-2014-6187 is a CSRF vulnerability affecting IBM WebSphere Service Registry and Repository (WSRR) across multiple versions (6.3.x up to 6.3.0.5; 7.0.x up to 7.0.0.5; 7.5.x up to 7.5.0.3; 8.0.x up to 8.0.0.2). The issue allows remote authenticated users to hijack the victim’s authenticated sess...