- Home
- CVEs with nessus.description==The version of IBM WebSphere Portal installed on the remote host is 8.0.0.x prior to 8.0.0.1 CF19 with interim fixes PI51395 and PI53426.
It is, therefore, affected by multiple vulnerabilities :
- An information disclosure vulnerability exists in the Portal AccessControl REST API that allows an unauthenticated, remote attacker to bypass access control lists and disclose sensitive configuration information. (CVE-2015-7447)
- An unspecified flaw exists when handling a specially crafted request that allows an unauthenticated, remote attacker to inject LDAP content and view, add, modify or delete information in the user repository.
(CVE-2015-7472)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top