Vulnerability Details CVE-2011-0679
IBM WebSphere Portal 6.0.1.1 through 7.0.0.0, as used in IBM Lotus Web Content Management (WCM) and IBM Lotus Quickr for WebSphere Portal, allows remote attackers to obtain sensitive information via a "modified message."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.026
EPSS Ranking 84.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://osvdb.org/70688
- http://secunia.com/advisories/43081
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM22159
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM22167
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM24319
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM24320
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM25191
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM25698
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM26397
- http://www.ibm.com/support/docview.wss?uid=swg21460422
- http://www.kb.cert.org/vuls/id/375127
- http://www.securityfocus.com/bid/45989
- http://www.vupen.com/english/advisories/2011/0223
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64890
- http://osvdb.org/70688
- http://secunia.com/advisories/43081
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM22159
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM22167
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM24319
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM24320
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM25191
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM25698
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM26397
- http://www.ibm.com/support/docview.wss?uid=swg21460422
- http://www.kb.cert.org/vuls/id/375127
- http://www.securityfocus.com/bid/45989
- http://www.vupen.com/english/advisories/2011/0223
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64890
Products affected by CVE-2011-0679
-
cpe:2.3:a:ibm:websphere_portal:6.0.1.1
-
cpe:2.3:a:ibm:websphere_portal:6.0.1.2
-
cpe:2.3:a:ibm:websphere_portal:6.0.1.3
-
cpe:2.3:a:ibm:websphere_portal:6.0.1.4
-
cpe:2.3:a:ibm:websphere_portal:6.0.1.5
-
cpe:2.3:a:ibm:websphere_portal:6.0.1.6
-
cpe:2.3:a:ibm:websphere_portal:6.0.1.7
-
cpe:2.3:a:ibm:websphere_portal:6.1.0.0
-
cpe:2.3:a:ibm:websphere_portal:6.1.0.1
-
cpe:2.3:a:ibm:websphere_portal:6.1.0.2
-
cpe:2.3:a:ibm:websphere_portal:6.1.0.3
-
cpe:2.3:a:ibm:websphere_portal:6.1.5.0
-
cpe:2.3:a:ibm:websphere_portal:7.0.0.0