1.9

CVE-2010-0769

EPSS 0.05%
Veröffentlicht 01.04.2010 19:30:00
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 does not properly define wsadmin scripting J2CConnectionFactory objects, which allows local users to discover a KeyRingPassword password by reading a cleartext field in the resources.xml file.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Websphere Application Server Version <= 6.0.2.39

Ibm ≫ Websphere Application Server Version6.0

Ibm ≫ Websphere Application Server Version6.0.0.2

Ibm ≫ Websphere Application Server Version6.0.0.3

Ibm ≫ Websphere Application Server Version6.0.1

Ibm ≫ Websphere Application Server Version6.0.1.2

Ibm ≫ Websphere Application Server Version6.0.2

Ibm ≫ Websphere Application Server Version6.0.2.1

Ibm ≫ Websphere Application Server Version6.0.2.3

Ibm ≫ Websphere Application Server Version6.0.2.5

Ibm ≫ Websphere Application Server Version6.0.2.7

Ibm ≫ Websphere Application Server Version6.0.2.9

Ibm ≫ Websphere Application Server Version6.0.2.11

Ibm ≫ Websphere Application Server Version6.0.2.13

Ibm ≫ Websphere Application Server Version6.0.2.15

Ibm ≫ Websphere Application Server Version6.0.2.17

Ibm ≫ Websphere Application Server Version6.0.2.19

Ibm ≫ Websphere Application Server Version6.0.2.21

Ibm ≫ Websphere Application Server Version6.0.2.23

Ibm ≫ Websphere Application Server Version6.0.2.25

Ibm ≫ Websphere Application Server Version6.0.2.27

Ibm ≫ Websphere Application Server Version6.0.2.29

Ibm ≫ Websphere Application Server Version6.0.2.31

Ibm ≫ Websphere Application Server Version6.0.2.33

Ibm ≫ Websphere Application Server Version6.0.2.35

Ibm ≫ Websphere Application Server Version6.0.2.37

Ibm ≫ Websphere Application Server Version <= 6.1.0.29

Ibm ≫ Websphere Application Server Version6.1.0

Ibm ≫ Websphere Application Server Version6.1.0.1

Ibm ≫ Websphere Application Server Version6.1.0.2

Ibm ≫ Websphere Application Server Version6.1.0.3

Ibm ≫ Websphere Application Server Version6.1.0.5

Ibm ≫ Websphere Application Server Version6.1.0.7

Ibm ≫ Websphere Application Server Version6.1.0.9

Ibm ≫ Websphere Application Server Version6.1.0.11

Ibm ≫ Websphere Application Server Version6.1.0.13

Ibm ≫ Websphere Application Server Version6.1.0.15

Ibm ≫ Websphere Application Server Version6.1.0.17

Ibm ≫ Websphere Application Server Version6.1.0.19

Ibm ≫ Websphere Application Server Version6.1.0.21

Ibm ≫ Websphere Application Server Version6.1.0.23

Ibm ≫ Websphere Application Server Version6.1.0.25

Ibm ≫ Websphere Application Server Version6.1.0.27

Ibm ≫ Websphere Application Server Version7.0

Ibm ≫ Websphere Application Server Version7.0.0.1

Ibm ≫ Websphere Application Server Version7.0.0.3

Ibm ≫ Websphere Application Server Version7.0.0.5

Ibm ≫ Websphere Application Server Version7.0.0.7

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.139

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	1.9	3.4	2.9	AV:L/AC:M/Au:N/C:P/I:N/A:N

http://secunia.com/advisories/39140

Vendor Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg1PK95089

https://exchange.xforce.ibmcloud.com/vulnerabilities/57185

https://nvd.nist.gov/vuln/detail/CVE-2010-0769

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-0769

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-0769

EUVD