Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2015-7461

XML external entity (XXE) vulnerability in IBM Connections 3.0.1.1 and earlier, 4.0, 4.5, and 5.0 before CR4 allows remote authenticated users to cause a denial of service (memory consumption) via crafted XML data. IBM X-Force ID: 108357.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.6%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
Products affected by CVE-2015-7461
  • Ibm » Connections » Version: 1.0.0.0
    cpe:2.3:a:ibm:connections:1.0.0.0
  • Ibm » Connections » Version: 1.0.1.0
    cpe:2.3:a:ibm:connections:1.0.1.0
  • Ibm » Connections » Version: 1.0.2.0
    cpe:2.3:a:ibm:connections:1.0.2.0
  • Ibm » Connections » Version: 2.0.0.0
    cpe:2.3:a:ibm:connections:2.0.0.0
  • Ibm » Connections » Version: 2.0.1.0
    cpe:2.3:a:ibm:connections:2.0.1.0
  • Ibm » Connections » Version: 2.0.1.1
    cpe:2.3:a:ibm:connections:2.0.1.1
  • Ibm » Connections » Version: 2.5.0.0
    cpe:2.3:a:ibm:connections:2.5.0.0
  • Ibm » Connections » Version: 2.5.0.1
    cpe:2.3:a:ibm:connections:2.5.0.1
  • Ibm » Connections » Version: 2.5.0.2
    cpe:2.3:a:ibm:connections:2.5.0.2
  • Ibm » Connections » Version: 2.5.0.3
    cpe:2.3:a:ibm:connections:2.5.0.3
  • Ibm » Connections » Version: 3.0.0.0
    cpe:2.3:a:ibm:connections:3.0.0.0
  • Ibm » Connections » Version: 3.0.1.0
    cpe:2.3:a:ibm:connections:3.0.1.0
  • Ibm » Connections » Version: 3.0.1.1
    cpe:2.3:a:ibm:connections:3.0.1.1
  • Ibm » Connections » Version: 4.0.0.0
    cpe:2.3:a:ibm:connections:4.0.0.0
  • Ibm » Connections » Version: 4.5.0.0
    cpe:2.3:a:ibm:connections:4.5.0.0
  • Ibm » Connections » Version: 5.0.0.0
    cpe:2.3:a:ibm:connections:5.0.0.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved