CVE-2010-2323

Published Jun 18, 2010

Last updated 14 years ago

Overview

Description: IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.11 on z/OS might allow attackers to obtain sensitive information by reading the default_create.log file that is associated with profile creation by the BBOWWPFx job and the zPMT.
Source: cve@mitre.org
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-200

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF0E1F40-C9BA-4879-A952-51E211298D27",
            "versionEndIncluding": "7.0.0.10"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_application_server:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0905C80-A1BA-49CD-90CA-9270ECC3940C"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_application_server:7.0.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B108457A-50DC-4432-9E30-98ADBEBF2389"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_application_server:7.0.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A8FC820-48D5-4850-82F7-8DA4A18EFF51"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_application_server:7.0.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0661F4A0-A520-4443-B19D-6885920ADFE5"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_application_server:7.0.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A553A6E7-64AA-41F2-9B92-4EC715C617B0"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_application_server:7.0.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BFBDE57-3895-4841-B23C-06336A7016EB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_application_server:7.0.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF56870A-F9D3-4544-B63A-EFC2E82A1F7D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_application_server:7.0.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30B7A7B9-FCD1-4509-93CF-C5B736B04F4B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_application_server:7.0.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C93D1CE2-1772-44C0-A8CB-73E9AA1AF6B8"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_application_server:7.0.0.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "90BA0923-4064-49D3-82A2-EEFC4B0F9A9C"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:ibm:zos:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E8D60057-94B9-40DB-927D-953703552B2A"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References