2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2015-4938" ,
"sourceIdentifier" : "psirt@us.ibm.com" ,
"published" : "2015-08-22T23:59:05.873" ,
2024-11-23 01:05:45 +00:00
"lastModified" : "2024-11-21T02:32:03.877" ,
2023-04-24 12:24:31 +02:00
"vulnStatus" : "Modified" ,
"descriptions" : [
{
"lang" : "en" ,
"value" : "IBM WebSphere Application Server 7.x before 7.0.0.39, 8.0.x before 8.0.0.11, and 8.5.x before 8.5.5.7 allows remote attackers to spoof servlets and obtain sensitive information via unspecified vectors."
} ,
{
"lang" : "es" ,
"value" : "Vulnerabilidad en IBM WebSphere Application Server en 7.x en versiones anteriores a 7.0.0.39, 8.0.x en versiones anteriores a 8.0.0.11, 8.5.x en versiones anteriores a 8.5.5.7, permite a atacantes remotos suplantar servlets y obtener informaci\u00f3n sensible a trav\u00e9s de vectores no especificados."
}
] ,
"metrics" : {
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:N/AC:L/Au:N/C:P/I:N/A:N" ,
2024-11-23 01:05:45 +00:00
"baseScore" : 5.0 ,
2023-04-24 12:24:31 +02:00
"accessVector" : "NETWORK" ,
"accessComplexity" : "LOW" ,
"authentication" : "NONE" ,
"confidentialityImpact" : "PARTIAL" ,
"integrityImpact" : "NONE" ,
2024-11-23 01:05:45 +00:00
"availabilityImpact" : "NONE"
2023-04-24 12:24:31 +02:00
} ,
"baseSeverity" : "MEDIUM" ,
"exploitabilityScore" : 10.0 ,
"impactScore" : 2.9 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : false ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : false
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "NVD-CWE-noinfo"
}
]
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B108457A-50DC-4432-9E30-98ADBEBF2389"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "4A8FC820-48D5-4850-82F7-8DA4A18EFF51"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0661F4A0-A520-4443-B19D-6885920ADFE5"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A553A6E7-64AA-41F2-9B92-4EC715C617B0"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "9BFBDE57-3895-4841-B23C-06336A7016EB"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "CF56870A-F9D3-4544-B63A-EFC2E82A1F7D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.7:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "30B7A7B9-FCD1-4509-93CF-C5B736B04F4B"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.8:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C93D1CE2-1772-44C0-A8CB-73E9AA1AF6B8"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.9:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "90BA0923-4064-49D3-82A2-EEFC4B0F9A9C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.10:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6289CCB4-9A13-4BB5-B44E-7CA936DD8421"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.11:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "833256BB-E2A6-4FE9-BE4F-982578023E43"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.12:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "9631D69C-AFEC-4CFF-9190-3E5435EDCEC2"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.13:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "CE94EFF2-CA86-4179-8250-350DF0D2BE83"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.14:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "373412A5-2971-4C92-BAAE-A1B77D2DA723"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.15:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "920F69CD-DEDB-4393-BE6E-B837BA6820B9"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.16:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7B5FE844-7F1C-4326-94EF-2CC0B4196085"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.17:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "5662B903-5480-403D-BC3D-2222F88264A6"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.18:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3F830D7B-17C2-40B5-B4A4-7A99980F63AC"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.19:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "4D82C3F2-9C50-4D1A-B939-77FC53E44EDF"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.21:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "03E6BAB6-D0D8-4698-BCF9-05D5A256FD37"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.22:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "4EB7ACE7-6572-4D19-8E7A-BB9FC57AA343"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.23:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "EF042A51-E34A-482C-8601-9FD09E6C866A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.24:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "075EC2D3-8A48-4103-910C-724A4CAF43DF"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.25:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3BFE6260-F130-44E1-9A31-985153F51385"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.27:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "489E4427-4059-4026-B952-72364AFFC135"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.29:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B95D1940-E5AD-4B59-80B4-C3370BB03169"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.31:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C7083F0E-57BA-4828-99E0-ECA8B54E2069"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.32:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "28C790DF-0D8B-473B-AC11-A6F02C81319E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.33:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "799B6FA0-0094-4CE9-8C63-8DBFF45E7260"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.34:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0E3C74F1-5CF6-4C35-9F5A-B9EFE8153992"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.36:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2D6CA79D-1B97-45EF-A40E-8ADD3644201B"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.37:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C39BC1E7-EDF9-4AD6-BA15-4E750903B1F3"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:7.0.0.38:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "FE7083FC-586B-49C4-BEED-E8AF6F7DDE54"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.0.0.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "AF1667C5-D19B-469C-82D5-8406B6D75EDE"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.0.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "89551609-69B7-452A-9CB2-04C12D268B41"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.0.0.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "AF27B7D7-4442-47CA-880D-D3B5412AEF9D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.0.0.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B595B048-4204-49B4-9497-B8D119C8784D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.0.0.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "DC38B5D4-66A3-4671-9099-0F38D283BA94"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.0.0.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B357DB53-061F-43D5-9E9F-5D5468A5805B"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.0.0.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "29ADADD2-EC21-4C45-A381-BC2091CD9F7B"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.0.0.7:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2AD901DE-9258-40DA-A09B-B0CA9DCCF843"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.0.0.8:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "8C21DDD3-C1CF-4CB2-BA13-4807F17AC5E1"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.0.0.9:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A6DBD14D-F0F2-4606-BC55-ECB6CCA3EF81"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.0.0.10:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1F994982-0972-4AC2-A0AB-BD3E46F7AA60"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.5.0.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1FD8F9CE-4E98-4187-B84A-429FA1C65E2D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.5.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "FC1D7570-4AB4-44B0-B5ED-D103F0946F63"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.5.0.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "9E709E36-B5D0-42E5-A305-AF385FD7F347"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.5.5.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "49506702-1B31-4421-8DEE-5B789272EC6E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.5.5.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "158777FD-83D1-44B9-83B4-A3F490CA76F4"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.5.5.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "EDA2FE6B-6E42-4E97-B803-DAB671D30FF5"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.5.5.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "72F5A562-5B2E-4BC7-8A81-EFE5ED265803"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.5.5.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "168E2F18-56C6-4789-BBAC-C99D4792046F"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.5.5.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B53EBD40-8E1A-4516-927D-ED1CF212B211"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:ibm:websphere_application_server:8.5.5.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1A4E88BA-F637-4400-A64F-E6516AE8917C"
}
]
}
]
}
] ,
"references" : [
{
"url" : "http://www-01.ibm.com/support/docview.wss?uid=swg1PI37396" ,
"source" : "psirt@us.ibm.com"
} ,
{
"url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21963275" ,
"source" : "psirt@us.ibm.com" ,
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "http://www.securityfocus.com/bid/76463" ,
"source" : "psirt@us.ibm.com"
} ,
{
"url" : "http://www.securitytracker.com/id/1033324" ,
"source" : "psirt@us.ibm.com"
2024-11-23 01:05:45 +00:00
} ,
{
"url" : "http://www-01.ibm.com/support/docview.wss?uid=swg1PI37396" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21963275" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "http://www.securityfocus.com/bid/76463" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.securitytracker.com/id/1033324" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
2023-04-24 12:24:31 +02:00
}
]
}
