CVE Vulnerabilities

CVE-2014-4760

Published: Aug 12, 2014 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Open redirect vulnerability in IBM WebSphere Portal 6.1.0.0 through 6.1.0.6 CF27, 6.1.5.0 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF28, 8.0.0 before 8.0.0.1 CF13, and 8.5.0 before CF01 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.

Affected Software

Name Vendor Start Version End Version
Websphere_portal Ibm 7.0.0.1 7.0.0.1
Websphere_portal Ibm 8.5.0.0 8.5.0.0
Websphere_portal Ibm 7.0.0.0 7.0.0.0
Websphere_portal Ibm 8.0.0.0 8.0.0.0
Websphere_portal Ibm 6.1.5.1 6.1.5.1
Websphere_portal Ibm 6.1.5.0 6.1.5.0
Websphere_portal Ibm 6.1.0.5 6.1.0.5
Websphere_portal Ibm 6.1.5.3 6.1.5.3
Websphere_portal Ibm 6.1.0.2 6.1.0.2
Websphere_portal Ibm 6.1.5.2 6.1.5.2
Websphere_portal Ibm 6.1.0.1 6.1.0.1
Websphere_portal Ibm 6.1.0.4 6.1.0.4
Websphere_portal Ibm 6.1.0.3 6.1.0.3
Websphere_portal Ibm 6.1.0.0 6.1.0.0
Websphere_portal Ibm 7.0.0.2 7.0.0.2
Websphere_portal Ibm 6.1.0.6 6.1.0.6

References