NVD

Id
7415  
Name
CVE-2011-0316  
Description
The Administrative Console component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.35 and 7.0 before 7.0.0.15 does not properly restrict access to console servlets, which allows remote attackers to obtain potentially sensitive status information via a direct request.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-07  
Published
2011-01-11  
Modified Date
2011-03-10  
Seq
2011-0316  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
41783 7415 CVE-2011-0316 PM24372  View
41784 7415 CVE-2011-0316 http://www-01.ibm.com/support/docview.wss?uid=swg27007951  View
41785 7415 CVE-2011-0316 http://www-01.ibm.com/support/docview.wss?uid=swg27014463  View
41786 7415 CVE-2011-0316 46736  View
41787 7415 CVE-2011-0316 ADV-2011-0564  View
41788 7415 CVE-2011-0316 was-consoleservlet-info-disclosure(64558)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
36940 JVNDB-2010-002720 IBM WebSphere Application Server における重要な情報を取得される脆弱性 IBM WebSphere Application Server (WAS) の Administrative Console コンポーネントは、コンソールサーブレットへのアクセスを適切に制限しないため、重要な情報を取得される脆弱性が存在します。 CVE-2011-0316 48223 CVE-2011-0316 7415 5 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002720.html 2010-12-17 2011-03-22 View