CVE-2015-7419

Published Nov 14, 2015

Last updated 6 years ago

Overview

Description: IBM WebSphere Portal 8.0.0.1 before CF19 and 8.5.0 before CF09 allows remote attackers to cause a denial of service (memory consumption) via crafted requests.
Source: psirt@us.ibm.com
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-399

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F40E0F5-B964-4BDC-828E-7571619F7C5B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf04:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A07791C-5EDE-4C2B-A441-6599339ED43F"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf05:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE6F9920-B458-496B-B0C0-BF8B85606BF8"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf06:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B2C78E9-EB40-42C0-A772-6203555D5E28"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf07:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A910F5CA-8257-420E-8D31-6BB0E4CFC963"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf08:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "462CF706-A352-40EE-8158-3A2197FE4098"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf09:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0AF93EAB-BDBC-4C20-9BD2-AACC95CD8355"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E090A0BC-DECD-4912-B5FB-C41A1E77675E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf11:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4CC1CAEE-C7DA-4F01-8948-BADCEB0B76ED"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf12:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D660652-D318-44B8-996A-6E56F4D71F68"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf13:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "783AA775-7257-45C8-A246-A71E559B459D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf14:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02F014F7-1F35-4982-98F5-B22E86544E0D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf15:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "535E3EAE-8286-4751-8DAF-707A0F2F160B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf16:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E6708150-6E0D-4B0C-98A0-A42CAF20D3E7"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf17:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96849F67-1B41-4265-8046-B29C5469DA4E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.0.0.1:cf18:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2074093E-8F1A-442D-8972-57FE73044079"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.5.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D03AF20E-0C29-45A6-9B7F-8260D8D9E8BF"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.5.0.0:cf1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA29BAC6-C8A4-4E7D-9657-55187EF93976"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.5.0.0:cf2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C5C13822-6429-4B77-89CC-E7845FFA14D8"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.5.0.0:cf3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "392ACE90-C966-4438-9B05-3ECCE2075C30"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.5.0.0:cf4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C513C48-0CE3-4AD9-968E-EF52D876DFC5"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.5.0.0:cf5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D659480-730D-43EA-A023-01502554DFB0"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.5.0.0:cf6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "428DE1AE-5EAB-4ED9-A624-0F68100D66F7"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.5.0.0:cf7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5B5F60DD-37BB-4879-B92F-DEF202AFB64D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:websphere_portal:8.5.0.0:cf8:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "228E4263-D9E3-4B79-B60E-E5AFBE980B40"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References