CVE-2014-0888

Published Aug 29, 2014
Last updated 3 months ago
CVSS info 4.9
Overview

Description: IBM Worklight Foundation 5.x and 6.x before 6.2.0.0, as used in Worklight and Mobile Foundation, allows remote authenticated users to bypass the application-authenticity feature via unspecified vectors.
Source: psirt@us.ibm.com
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 4.9
Impact score: 4.9
Exploitability score: 6.8
Vector string: AV:N/AC:M/Au:S/C:N/I:P/A:P
Weaknesses

nvd@nist.gov: CWE-264
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.0.0:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F9F05EA-7931-4F33-8417-D19FD34E2F1D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.0.0:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9CD1B3B7-D5EE-43F5-8DA6-447B9E56A7C3"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.0.1:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD936CDC-4D7F-48E9-B26F-F7CB72D0D9AB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.0.1:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3392E0D-2488-4550-BE1C-D4A8AB8A3E29"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.0.2:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2E64579-6536-4C1F-8797-464CFC48328C"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.0.2:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C40F1B4-E55D-4E2A-B51E-BCC3680D02D3"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.0.3:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BBFF3A56-2304-4AC3-8240-8695DB83B7A5"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.0.3:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF626B88-17B4-48C3-B2B5-4425DD6C4C93"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.5.0:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DDFC15E8-309B-4628-9433-07A728D9F44F"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.5.0:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A71F0E5E-F422-47B3-96CF-CF345947D822"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.5.1:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "77C0B96B-4D6B-44F2-8699-5A4F22B247CB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.5.1:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8F47A1A-350F-4FF1-B357-6ECD6EFBA5A2"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.6.0:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D54DB742-01A0-45B4-9C82-F92B5FC8CE9C"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.6.0:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "248DF8E8-BB46-4AFF-B146-D55BAD98FFEC"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.6.1:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BFB1B485-9DA1-4185-B25B-21D741924A2E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.6.1:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "098BA964-4D6A-4836-B6BE-874206183B1B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.6.2:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "990A341A-72C8-43C9-A265-90B92A5D850A"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:5.0.6.2:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "607A2E4D-8B96-405F-93E0-3AF1F313665E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:6.0.0.0:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D346CCB1-1832-4E8B-AB8E-ADB6547563F6"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:6.0.0.0:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E6383639-CEFB-4797-A037-CDD36354D2DC"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:6.0.0.1:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "36D2CE94-5B4E-43AC-B296-48AE7F0636CC"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:6.0.0.1:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1C0C058-B3D0-42A2-8A53-2DD21B901ECF"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:6.0.0.2:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C5BCF31-7DA3-45BD-9F36-A4D5C93EB3C3"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:6.0.0.2:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "370F11B6-B9ED-4933-8DCA-EDC99618D7E0"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:6.1.0.0:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A37AE292-CF9A-4F70-AFAD-C8867ADA6C68"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:6.1.0.0:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92052A11-0AA8-45C0-B748-7144863C4C48"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:6.1.0.1:*:*:*:consumer:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60530569-E8E0-4EDB-B7B8-48195E6448FA"
          },
          {
            "criteria": "cpe:2.3:a:ibm:worklight:6.1.0.1:*:*:*:enterprise:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71B306B8-7E88-49A6-919C-0B66B04510A1"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:5.0.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26428E09-D30F-40E9-8DBD-3FDD39304D47"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:5.0.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1BEF8C29-EC0C-4A06-A814-6DB22A74E0DA"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:5.0.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "587016CF-7370-4EA6-80DC-488E4379D185"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:5.0.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4CDC21F-489B-4743-BB93-248C8E966DEF"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:5.0.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BBF0C404-5A25-4B65-B654-C05D70767F9F"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:5.0.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFC801DB-92C7-41F9-9218-7F0148DD81A0"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:5.0.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F1734D4-9EFE-4213-9E9E-6F31B56F0FB6"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:5.0.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "13F097F4-0B7E-40CC-B54B-A133B379B1A3"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:5.0.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE1A0FA1-ACD1-4AEC-B197-33B4210C5CBD"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:6.0.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1810E86A-B967-45AE-ABB9-C68DC48EDAE4"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:6.0.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C359A92-B2AF-4EE9-AA3D-1FA630098609"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:6.0.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8415C002-AFC0-4A60-87A4-8EEF7C8D27C8"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:6.1.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6099F6E0-1DB3-40F5-A2A8-B4D11BC67FF2"
          },
          {
            "criteria": "cpe:2.3:a:ibm:mobile_foundation:6.1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F555213-7572-41A2-941F-C6CE9D784B71"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
