CVE-2007-5799 in WebSphere Application Serverinfo

Zusammenfassung

von MITRE

Multiple cross-site request forgery (CSRF) vulnerabilities in uddigui/navigateTree.do in the UDDI user console in IBM WebSphere Application Server (WAS) before 6.1.0 Fix Pack 13 (6.1.0.13) allow remote attackers to perform some actions as WAS UDDI users via the (1) keyField, (2) nameField, (3) valueField, and (4) frameReturn parameters.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

02.11.2007

Veröffentlichung

02.11.2007

Moderieren

akzeptiert

Eintrag

VDB-39542

CPE

bereit

CWE

CWE-352 (bestätigt)

CVSS

4.3 (NVD)

EPSS

0.00613

KEV

nein

Aktivitäten

very low

Sektor

Government, Energy, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-5799
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-5799
CVE Details	https://www.cvedetails.com/cve/CVE-2007-5799/

◂ Zurück Übersicht Weiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!