CVE-2015-7472

3 documents3 sources
Severity
7.2HIGH
EPSS
0.2%
top 55.44%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Websphere Portal
Timeline
PublishedFeb 15
Latest updateMay 17

Description

IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF20, and 8.5.0 before CF10 allows remote attackers to conduct LDAP injection attacks, and consequently read or write to repository data, via unspecified vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:NExploitability: 3.9 | Impact: 2.7

Affected Packages1 packages

NVDibm/websphere_portal17 versions+16

🔴Vulnerability Details

2
GHSA
GHSA-74rp-5v98-g9p7: IBM WebSphere Portal 62022-05-17
CVEList
CVE-2015-7472: IBM WebSphere Portal 62016-02-15
CVE-2015-7472 (HIGH CVSS 7.2) | IBM WebSphere Portal 6.1.0 through | cvebase.io