CVE-2014-6160
N/A
N/A
Summary
IBM WebSphere Service Registry and Repository (WSRR) 8.5 before 8.5.0.1, when Chrome and WebSEAL are used, does not properly process ServiceRegistryDashboard logout actions, which allows remote attackers to bypass intended access restrictions by leveraging an unattended workstation.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/97709
- http://www-01.ibm.com/support/docview.wss?uid=swg21693389
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV63498
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/97709
- http://www-01.ibm.com/support/docview.wss?uid=swg21693389
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV63498
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.