CVE-2015-1946

Sažetak

IBM WebSphere Application Server (WAS) 8.5 before 8.5.5.6, and WebSphere Virtual Enterprise 7.0 before 7.0.0.6 for WebSphere Application Server (WAS) 7.0 and 8.0, does not properly implement user roles, which allows local users to gain privileges via unspecified vectors.

Reference

http://www.securityfocus.com/bid/75496
http://www-01.ibm.com/support/docview.wss?uid=swg1PI35180
http://www-01.ibm.com/support/docview.wss?uid=swg21959083

CVSS

Base:	4.4
Impact:	6.4
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

28-11-2016 - 19:19

Objavljeno

14-07-2015 - 17:59