NVD

Id
24086  
Name
CVE-2015-1882  
Description
Multiple race conditions in IBM WebSphere Application Server (WAS) 8.5 Liberty Profile before 8.5.5.5 allow remote authenticated users to gain privileges by leveraging thread conflicts that result in Java code execution outside the context of the configured EJB Run-as user.  
Reject
 
CVSS Version
2  
CVSS Score
8.5  
Severity
High  
CVSS Base Score
8.5  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2015-04-27  
Modified Date
2016-08-03  
Seq
2015-1882  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
127881 24086 CVE-2015-1882 PI33357  View
127882 24086 CVE-2015-1882 http://www-01.ibm.com/support/docview.wss?uid=swg21697368  View
127883 24086 CVE-2015-1882 74222  View
127884 24086 CVE-2015-1882 1032190  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
7180 JVNDB-2015-002500 IBM WebSphere Application Server Liberty Profile における権限を取得される脆弱性 IBM WebSphere Application Server (WAS) Liberty Profile には、競合状態により、権限を取得される脆弱性が存在します。 CVE-2015-1882 79107 CVE-2015-1882 24086 8.5 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-002500.html 2015-03-17 2015-04-28 View