Vulnerability Details CVE-2016-5954
IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF30, 8.0.0 through 8.0.0.1 CF21, and 8.5.0 before CF12 allows remote authenticated users to cause a denial of service by uploading temporary files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.4%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI67037
- http://www-01.ibm.com/support/docview.wss?uid=swg21989993
- http://www.securityfocus.com/bid/93017
- http://www.securitytracker.com/id/1036762
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI67037
- http://www-01.ibm.com/support/docview.wss?uid=swg21989993
- http://www.securityfocus.com/bid/93017
- http://www.securitytracker.com/id/1036762
Products affected by CVE-2016-5954
-
cpe:2.3:a:ibm:websphere_portal:6.1.0.0
-
cpe:2.3:a:ibm:websphere_portal:6.1.0.1
-
cpe:2.3:a:ibm:websphere_portal:6.1.0.2
-
cpe:2.3:a:ibm:websphere_portal:6.1.0.3
-
cpe:2.3:a:ibm:websphere_portal:6.1.0.4
-
cpe:2.3:a:ibm:websphere_portal:6.1.0.5
-
cpe:2.3:a:ibm:websphere_portal:6.1.0.6
-
cpe:2.3:a:ibm:websphere_portal:6.1.5.0
-
cpe:2.3:a:ibm:websphere_portal:6.1.5.1
-
cpe:2.3:a:ibm:websphere_portal:6.1.5.2
-
cpe:2.3:a:ibm:websphere_portal:6.1.5.3
-
cpe:2.3:a:ibm:websphere_portal:7.0.0.0
-
cpe:2.3:a:ibm:websphere_portal:7.0.0.1
-
cpe:2.3:a:ibm:websphere_portal:7.0.0.2
-
cpe:2.3:a:ibm:websphere_portal:8.0.0.0
-
cpe:2.3:a:ibm:websphere_portal:8.0.0.1
-
cpe:2.3:a:ibm:websphere_portal:8.5.0.0