CVE-2014-6197

Published Jan 17, 2015

Last updated 7 years ago

CVSS info 4.3

Overview

Description: IBM Security Network Protection 5.1.x and 5.2.x before 5.2.0.0 FP5 and 5.3.x before 5.3.0.0 FP1 allows remote attackers to conduct clickjacking attacks via unspecified vectors.
Source: psirt@us.ibm.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:ibm:security_network_protection_xgs_firmware:5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE0EE2AA-0FFC-4236-B302-232DA1C7E8E3"
          },
          {
            "criteria": "cpe:2.3:o:ibm:security_network_protection_xgs_firmware:5.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FCE3CF3B-02FC-4EFE-9C22-6D2806EA4F04"
          },
          {
            "criteria": "cpe:2.3:o:ibm:security_network_protection_xgs_firmware:5.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "66B87CB7-DB3F-4B66-AD5C-309FC7E9CC74"
          },
          {
            "criteria": "cpe:2.3:o:ibm:security_network_protection_xgs_firmware:5.1.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D48B785-3217-4A0B-B675-5829814016AE"
          },
          {
            "criteria": "cpe:2.3:o:ibm:security_network_protection_xgs_firmware:5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "213345E0-A6BA-47D3-9122-214C8827D116"
          },
          {
            "criteria": "cpe:2.3:o:ibm:security_network_protection_xgs_firmware:5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83FFD578-DC24-49BF-902E-3F4BE86625F8"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:ibm:security_network_protection_xgs_3100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BA102290-864C-46C2-BABD-A08413A8DE56"
          },
          {
            "criteria": "cpe:2.3:h:ibm:security_network_protection_xgs_4100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AC37B5B8-E1C5-404A-B873-58219259614B"
          },
          {
            "criteria": "cpe:2.3:h:ibm:security_network_protection_xgs_5100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E2B08CBB-4A15-4125-A8FA-6F64655A0BA0"
          },
          {
            "criteria": "cpe:2.3:h:ibm:security_network_protection_xgs_7100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8196A88D-5669-4D08-9DE1-C0FA32B710F0"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References