admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 09:11:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2015/CVE-2015-01xx/CVE-2015-0116.json
cad-safe-bot 9d8babeec3 Auto-Update: 2024-07-14T02:00:17.787041+00:00
2024-07-14 02:06:08 +00:00

129 lines
4.4 KiB
JSON
Raw Blame History

{
"id": "CVE-2015-0116",
"sourceIdentifier": "psirt@us.ibm.com",
"published": "2015-06-28T22:59:02.567",
"lastModified": "2016-05-26T12:24:11.660",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 does not properly restrict the addition of links, which makes it easier for remote authenticated users to conduct cross-site request forgery (CSRF) attacks via unspecified vectors."
},
{
"lang": "es",
"value": "IBM Leads 7.x, 8.1.0 en versiones anteriores a 8.1.0.14, 8.2, 8.5.0 en versiones anteriores a 8.5.0.7.3, 8.6.0 en versiones anteriores a 8.6.0.8.1, 9.0.0 hasta la versi\u00f3n 9.0.0.4, 9.1.0 en versiones anteriores a 9.1.0.6.1 y 9.1.1 en versiones anteriores a 9.1.1.0.2 no restringe correctamente la adici\u00f3n de links, lo que hace m\u00e1s f\u00e1cil para usuarios remotos autenticados llevar a cabo ataques CSRF a trav\u00e9s de vectores no especificados."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "SINGLE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE",
"baseScore": 3.5
},
"baseSeverity": "LOW",
"exploitabilityScore": 6.8,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": true
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-74"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:leads:7.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "BCBAD574-7359-4277-8ECA-0D074634AE3E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:leads:7.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A6ABA9D9-CECA-4F65-8850-8E934118997C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:leads:7.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "5C0983C0-8A4E-4EA5-8B4C-AEB7629CDC07"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:leads:8.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7DCE555E-DF69-4C23-971B-C11E14BB6EB1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:leads:8.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "A706D50A-92BC-4D8D-8403-21686327ADF9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:leads:8.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F99462BD-3942-4C49-B6A4-FD95CEE64629"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:leads:8.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E128B3BE-BB38-4790-952B-A12F25A4D591"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:leads:9.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "FDF0432E-9A53-462E-9CEA-957C629BA125"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:leads:9.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "04EE5483-58FA-4B68-B5CB-74CEF748CCC9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:leads:9.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8F830E08-F5DE-4A69-89F4-1BA4DF225A9E"
}
]
}
]
}
],
"references": [
{
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21902807",
"source": "psirt@us.ibm.com",
"tags": [
"Patch",
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink