IBM WebSphere Portal 7.x through 7.0.0.2 CF29, 8.0.x before 8.0.0.1 CF20, and 8.5.x before 8.5.0.0 CF09 uses weak permissions for content items, which allows remote authenticated users to make modifications via the authoring UI.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:36
Type | Values Removed | Values Added |
---|---|---|
References | () http://www-01.ibm.com/support/docview.wss?uid=swg1PI51234 - | |
References | () http://www.ibm.com/support/docview.wss?uid=swg21975358 - |
Information
Published : 2016-02-29 11:59
Updated : 2024-11-21 02:36
NVD link : CVE-2015-7455
Mitre link : CVE-2015-7455
CVE.ORG link : CVE-2015-7455
JSON object : View
Products Affected
ibm
- websphere_portal
CWE
CWE-264
Permissions, Privileges, and Access Controls