1.9

CVE-2010-0769

EPSS 0.05%
Published 01.04.2010 19:30:00
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 does not properly define wsadmin scripting J2CConnectionFactory objects, which allows local users to discover a KeyRingPassword password by reading a cleartext field in the resources.xml file.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Websphere Application Server Version <= 6.0.2.39

Ibm ≫ Websphere Application Server Version6.0

Ibm ≫ Websphere Application Server Version6.0.0.2

Ibm ≫ Websphere Application Server Version6.0.0.3

Ibm ≫ Websphere Application Server Version6.0.1

Ibm ≫ Websphere Application Server Version6.0.1.2

Ibm ≫ Websphere Application Server Version6.0.2

Ibm ≫ Websphere Application Server Version6.0.2.1

Ibm ≫ Websphere Application Server Version6.0.2.3

Ibm ≫ Websphere Application Server Version6.0.2.5

Ibm ≫ Websphere Application Server Version6.0.2.7

Ibm ≫ Websphere Application Server Version6.0.2.9

Ibm ≫ Websphere Application Server Version6.0.2.11

Ibm ≫ Websphere Application Server Version6.0.2.13

Ibm ≫ Websphere Application Server Version6.0.2.15

Ibm ≫ Websphere Application Server Version6.0.2.17

Ibm ≫ Websphere Application Server Version6.0.2.19

Ibm ≫ Websphere Application Server Version6.0.2.21

Ibm ≫ Websphere Application Server Version6.0.2.23

Ibm ≫ Websphere Application Server Version6.0.2.25

Ibm ≫ Websphere Application Server Version6.0.2.27

Ibm ≫ Websphere Application Server Version6.0.2.29

Ibm ≫ Websphere Application Server Version6.0.2.31

Ibm ≫ Websphere Application Server Version6.0.2.33

Ibm ≫ Websphere Application Server Version6.0.2.35

Ibm ≫ Websphere Application Server Version6.0.2.37

Ibm ≫ Websphere Application Server Version <= 6.1.0.29

Ibm ≫ Websphere Application Server Version6.1.0

Ibm ≫ Websphere Application Server Version6.1.0.1

Ibm ≫ Websphere Application Server Version6.1.0.2

Ibm ≫ Websphere Application Server Version6.1.0.3

Ibm ≫ Websphere Application Server Version6.1.0.5

Ibm ≫ Websphere Application Server Version6.1.0.7

Ibm ≫ Websphere Application Server Version6.1.0.9

Ibm ≫ Websphere Application Server Version6.1.0.11

Ibm ≫ Websphere Application Server Version6.1.0.13

Ibm ≫ Websphere Application Server Version6.1.0.15

Ibm ≫ Websphere Application Server Version6.1.0.17

Ibm ≫ Websphere Application Server Version6.1.0.19

Ibm ≫ Websphere Application Server Version6.1.0.21

Ibm ≫ Websphere Application Server Version6.1.0.23

Ibm ≫ Websphere Application Server Version6.1.0.25

Ibm ≫ Websphere Application Server Version6.1.0.27

Ibm ≫ Websphere Application Server Version7.0

Ibm ≫ Websphere Application Server Version7.0.0.1

Ibm ≫ Websphere Application Server Version7.0.0.3

Ibm ≫ Websphere Application Server Version7.0.0.5

Ibm ≫ Websphere Application Server Version7.0.0.7

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.05%	0.139

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	1.9	3.4	2.9	AV:L/AC:M/Au:N/C:P/I:N/A:N

http://secunia.com/advisories/39140

Vendor Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg1PK95089

https://exchange.xforce.ibmcloud.com/vulnerabilities/57185

https://nvd.nist.gov/vuln/detail/CVE-2010-0769

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-0769

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-0769

EUVD