CVE-2015-1908 - Vulnerability Details

Vendors	Products
Ibm	Websphere Portal

Link	Providers
http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661
http://www-01.ibm.com/support/docview.wss?uid=swg21701566
http://www.securityfocus.com/bid/74218
http://www.securitytracker.com/id/1032189

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-04-20T00:00:00", "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF16, and 8.5.0 through CF05, as used in Web Content Manager and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted URL."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-11-28T20:57:01", "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm"}, "references": [{"name": "1032189", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1032189"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21701566"}, {"name": "PI37661", "tags": ["vendor-advisory", "x_refsource_AIXAPAR"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661"}, {"name": "74218", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/74218"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@us.ibm.com", "ID": "CVE-2015-1908", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF16, and 8.5.0 through CF05, as used in Web Content Manager and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted URL."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1032189", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1032189"}, {"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21701566", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21701566"}, {"name": "PI37661", "refsource": "AIXAPAR", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661"}, {"name": "74218", "refsource": "BID", "url": "http://www.securityfocus.com/bid/74218"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T04:54:16.525Z"}, "title": "CVE Program Container", "references": [{"name": "1032189", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1032189"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21701566"}, {"name": "PI37661", "tags": ["vendor-advisory", "x_refsource_AIXAPAR", "x_transferred"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661"}, {"name": "74218", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/74218"}]}]}, "cveMetadata": {"assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "assignerShortName": "ibm", "cveId": "CVE-2015-1908", "datePublished": "2015-04-24T23:00:00", "dateReserved": "2015-02-19T00:00:00", "dateUpdated": "2024-08-06T04:54:16.525Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2015-04-20T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF16, and 8.5.0 through CF05, as used in Web Content Manager and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted URL. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2016-11-28T20:57:01 (string)

orgId : 9a959283-ebb5-44b6-b705-dcc2bbced522 (string)

shortName : ibm (string)

}

references : [ »

0 : { »

name : 1032189 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

]

url : http://www.securitytracker.com/id/1032189 (string)

}

1 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://www-01.ibm.com/support/docview.wss?uid=swg21701566 (string)

}

2 : { »

name : PI37661 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_AIXAPAR (string)

]

url : http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661 (string)

}

3 : { »

name : 74218 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

]

url : http://www.securityfocus.com/bid/74218 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : psirt@us.ibm.com (string)

ID : CVE-2015-1908 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF16, and 8.5.0 through CF05, as used in Web Content Manager and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted URL. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : 1032189 (string)

refsource : SECTRACK (string)

url : http://www.securitytracker.com/id/1032189 (string)

}

1 : { »

name : http://www-01.ibm.com/support/docview.wss?uid=swg21701566 (string)

refsource : CONFIRM (string)

url : http://www-01.ibm.com/support/docview.wss?uid=swg21701566 (string)

}

2 : { »

name : PI37661 (string)

refsource : AIXAPAR (string)

url : http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661 (string)

}

3 : { »

name : 74218 (string)

refsource : BID (string)

url : http://www.securityfocus.com/bid/74218 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-06T04:54:16.525Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : 1032189 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

2 : x_transferred (string)

]

url : http://www.securitytracker.com/id/1032189 (string)

}

1 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://www-01.ibm.com/support/docview.wss?uid=swg21701566 (string)

}

2 : { »

name : PI37661 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_AIXAPAR (string)

2 : x_transferred (string)

]

url : http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661 (string)

}

3 : { »

name : 74218 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

2 : x_transferred (string)

]

url : http://www.securityfocus.com/bid/74218 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 9a959283-ebb5-44b6-b705-dcc2bbced522 (string)

assignerShortName : ibm (string)

cveId : CVE-2015-1908 (string)

datePublished : 2015-04-24T23:00:00 (string)

dateReserved : 2015-02-19T00:00:00 (string)

dateUpdated : 2024-08-06T04:54:16.525Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:websphere_portal:6.1.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "E618064A-3D05-4DC6-9A47-0EDF2427642F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:6.1.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "3DE74154-3E79-4D56-96C4-D8E644F1419D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:6.1.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "FA915826-5D89-43E9-83E7-88973648302A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:6.1.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "C5DB29F4-59AB-439C-91C4-CDF677676C26", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:6.1.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "9D6CA922-11EF-4315-A09A-B4A8937E4CF4", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:6.1.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "526738D7-1AF8-4A8F-B833-BA0E35973A3E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:6.1.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "13D6BE9C-16FD-4FB4-8A87-56B42C246316", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:6.1.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "3F1964FC-672F-4139-938F-A8EF9D86D9C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:6.1.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "C5B50CEA-AFC4-4B45-9954-519965237FC3", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:6.1.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "0902AC0F-EA4D-4E65-A70A-15DE9B904B35", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:6.1.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "D808F95D-C6BD-43EB-B16C-66449977BCFE", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "D303B0B9-CDAB-409B-AE44-512D4791C36F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:7.0.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "C6ECEE98-B276-4ED6-AA5A-109EA57E9925", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:7.0.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "9E4FF84B-A17F-464B-A718-67C44D2C69BC", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "C90EF7A4-8181-42C3-BB95-395D0DD94C14", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "1F40E0F5-B964-4BDC-828E-7571619F7C5B", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_portal:8.5.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "D03AF20E-0C29-45A6-9B7F-8260D8D9E8BF", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF16, and 8.5.0 through CF05, as used in Web Content Manager and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted URL."}, {"lang": "es", "value": "Vulnerabilidad de XSS en IBM WebSphere Portal 6.1.0 hasta 6.1.0.6 CF27, 6.1.5 hasta 6.1.5.3 CF27, 7.0.0 hasta 7.0.0.2 CF29, 8.0.0 hasta 8.0.0.1 CF16, y 8.5.0 hasta CF05, utilizado en Web Content Manager y otros productos, permite a atacantes remotos inyectar secuencias de comandos web arbitrarios o HTML a trav\u00e9s de una URL manipulada."}], "id": "CVE-2015-1908", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2015-04-27T11:59:06.360", "references": [{"source": "psirt@us.ibm.com", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661"}, {"source": "psirt@us.ibm.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21701566"}, {"source": "psirt@us.ibm.com", "url": "http://www.securityfocus.com/bid/74218"}, {"source": "psirt@us.ibm.com", "url": "http://www.securitytracker.com/id/1032189"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21701566"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/74218"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1032189"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:6.1.0.0:*:*:*:*:*:*:* (string)

matchCriteriaId : E618064A-3D05-4DC6-9A47-0EDF2427642F (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:6.1.0.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 3DE74154-3E79-4D56-96C4-D8E644F1419D (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:6.1.0.2:*:*:*:*:*:*:* (string)

matchCriteriaId : FA915826-5D89-43E9-83E7-88973648302A (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:6.1.0.3:*:*:*:*:*:*:* (string)

matchCriteriaId : C5DB29F4-59AB-439C-91C4-CDF677676C26 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:6.1.0.4:*:*:*:*:*:*:* (string)

matchCriteriaId : 9D6CA922-11EF-4315-A09A-B4A8937E4CF4 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:6.1.0.5:*:*:*:*:*:*:* (string)

matchCriteriaId : 526738D7-1AF8-4A8F-B833-BA0E35973A3E (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:6.1.0.6:*:*:*:*:*:*:* (string)

matchCriteriaId : 13D6BE9C-16FD-4FB4-8A87-56B42C246316 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:6.1.5.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 3F1964FC-672F-4139-938F-A8EF9D86D9C2 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:6.1.5.1:*:*:*:*:*:*:* (string)

matchCriteriaId : C5B50CEA-AFC4-4B45-9954-519965237FC3 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:6.1.5.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 0902AC0F-EA4D-4E65-A70A-15DE9B904B35 (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:6.1.5.3:*:*:*:*:*:*:* (string)

matchCriteriaId : D808F95D-C6BD-43EB-B16C-66449977BCFE (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:* (string)

matchCriteriaId : D303B0B9-CDAB-409B-AE44-512D4791C36F (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:7.0.0.1:*:*:*:*:*:*:* (string)

matchCriteriaId : C6ECEE98-B276-4ED6-AA5A-109EA57E9925 (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:7.0.0.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 9E4FF84B-A17F-464B-A718-67C44D2C69BC (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:* (string)

matchCriteriaId : C90EF7A4-8181-42C3-BB95-395D0DD94C14 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:8.0.0.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 1F40E0F5-B964-4BDC-828E-7571619F7C5B (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:a:ibm:websphere_portal:8.5.0.0:*:*:*:*:*:*:* (string)

matchCriteriaId : D03AF20E-0C29-45A6-9B7F-8260D8D9E8BF (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF16, and 8.5.0 through CF05, as used in Web Content Manager and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted URL. (string)

}

1 : { »

lang : es (string)

value : Vulnerabilidad de XSS en IBM WebSphere Portal 6.1.0 hasta 6.1.0.6 CF27, 6.1.5 hasta 6.1.5.3 CF27, 7.0.0 hasta 7.0.0.2 CF29, 8.0.0 hasta 8.0.0.1 CF16, y 8.5.0 hasta CF05, utilizado en Web Content Manager y otros productos, permite a atacantes remotos inyectar secuencias de comandos web arbitrarios o HTML a través de una URL manipulada. (string)

}

]

id : CVE-2015-1908 (string)

lastModified : 2025-04-12T10:46:40.837 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : MEDIUM (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : NONE (string)

baseScore : 4.3 (number)

confidentialityImpact : NONE (string)

integrityImpact : PARTIAL (string)

vectorString : AV:N/AC:M/Au:N/C:N/I:P/A:N (string)

version : 2.0 (string)

}

exploitabilityScore : 8.6 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : true (boolean)

}

]

}

published : 2015-04-27T11:59:06.360 (string)

references : [ »

0 : { »

source : psirt@us.ibm.com (string)

url : http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661 (string)

}

1 : { »

source : psirt@us.ibm.com (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://www-01.ibm.com/support/docview.wss?uid=swg21701566 (string)

}

2 : { »

source : psirt@us.ibm.com (string)

url : http://www.securityfocus.com/bid/74218 (string)

}

3 : { »

source : psirt@us.ibm.com (string)

url : http://www.securitytracker.com/id/1032189 (string)

}

4 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www-01.ibm.com/support/docview.wss?uid=swg1PI37661 (string)

}

5 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://www-01.ibm.com/support/docview.wss?uid=swg21701566 (string)

}

6 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.securityfocus.com/bid/74218 (string)

}

7 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.securitytracker.com/id/1032189 (string)

}

]

sourceIdentifier : psirt@us.ibm.com (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-79 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object