CVE-2008-0402

Sažetak

Unspecified vulnerability in IBM WebSphere Business Modeler Basic and Advanced 6.0.2.1 before Interim Fix 11 allows remote authenticated users to bypass intended access restrictions and delete unspecified repository resources via unknown vectors, even when they are not administrators or members of the repository's owning group.

Reference

http://secunia.com/advisories/28586
http://www.securityfocus.com/bid/27389
http://www.securitytracker.com/id?1019252
http://www.vupen.com/english/advisories/2008/0254
http://www-1.ibm.com/support/docview.wss?uid=swg24018060
http://www-1.ibm.com/support/docview.wss?uid=swg24018061
http://www-1.ibm.com/support/search.wss?rs=0&q=JR28175&apar=only
https://exchange.xforce.ibmcloud.com/vulnerabilities/39830

CVSS

Base:	6.0
Impact:	6.4
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

08-08-2017 - 01:29

Objavljeno

23-01-2008 - 12:00