CVE Vulnerabilities

CVE-2014-6193

Published: Dec 19, 2014 | Modified: Sep 08, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.9 MEDIUM
AV:N/AC:M/Au:S/C:N/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

IBM WebSphere Portal 8.0.0 through 8.0.0.1 CF14 and 8.5.0 before CF04, when the Managed Pages setting is enabled, allows remote authenticated users to write to pages via an XML injection attack.

Affected Software

Name Vendor Start Version End Version
Websphere_portal Ibm 8.5.0.0 8.5.0.0
Websphere_portal Ibm 8.0.0.1 8.0.0.1
Websphere_portal Ibm 8.0.0.0 8.0.0.0

References