IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 may fail to set the correct user context in certain impersonation scenarios, which can allow a user to act with the identity of a different user. IBM X-Force ID: 144958.
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Websphere_portal | Ibm | 7.0.0.0 (including) | 7.0.0.0 (including) |
| Websphere_portal | Ibm | 7.0.0.1 (including) | 7.0.0.1 (including) |
| Websphere_portal | Ibm | 7.0.0.1-cf011 (including) | 7.0.0.1-cf011 (including) |
| Websphere_portal | Ibm | 7.0.0.1-cf012 (including) | 7.0.0.1-cf012 (including) |
| Websphere_portal | Ibm | 7.0.0.1-cf013 (including) | 7.0.0.1-cf013 (including) |
| Websphere_portal | Ibm | 7.0.0.1-cf014 (including) | 7.0.0.1-cf014 (including) |
| Websphere_portal | Ibm | 7.0.0.1-cf015 (including) | 7.0.0.1-cf015 (including) |
| Websphere_portal | Ibm | 7.0.0.1-cf016 (including) | 7.0.0.1-cf016 (including) |
| Websphere_portal | Ibm | 7.0.0.1-cf017 (including) | 7.0.0.1-cf017 (including) |
| Websphere_portal | Ibm | 7.0.0.1-cf018 (including) | 7.0.0.1-cf018 (including) |
| Websphere_portal | Ibm | 7.0.0.1-cf019 (including) | 7.0.0.1-cf019 (including) |
| Websphere_portal | Ibm | 7.0.0.1-cf020 (including) | 7.0.0.1-cf020 (including) |
| Websphere_portal | Ibm | 7.0.0.2 (including) | 7.0.0.2 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf012 (including) | 7.0.0.2-cf012 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf013 (including) | 7.0.0.2-cf013 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf014 (including) | 7.0.0.2-cf014 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf015 (including) | 7.0.0.2-cf015 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf016 (including) | 7.0.0.2-cf016 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf017 (including) | 7.0.0.2-cf017 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf018 (including) | 7.0.0.2-cf018 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf019 (including) | 7.0.0.2-cf019 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf020 (including) | 7.0.0.2-cf020 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf021 (including) | 7.0.0.2-cf021 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf022 (including) | 7.0.0.2-cf022 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf023 (including) | 7.0.0.2-cf023 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf024 (including) | 7.0.0.2-cf024 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf025 (including) | 7.0.0.2-cf025 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf026 (including) | 7.0.0.2-cf026 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf027 (including) | 7.0.0.2-cf027 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf028 (including) | 7.0.0.2-cf028 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf029 (including) | 7.0.0.2-cf029 (including) |
| Websphere_portal | Ibm | 7.0.0.2-cf030 (including) | 7.0.0.2-cf030 (including) |
| Websphere_portal | Ibm | 8.0.0.0 (including) | 8.0.0.0 (including) |
| Websphere_portal | Ibm | 8.0.0.0-cf01 (including) | 8.0.0.0-cf01 (including) |
| Websphere_portal | Ibm | 8.0.0.0-cf02 (including) | 8.0.0.0-cf02 (including) |
| Websphere_portal | Ibm | 8.0.0.0-cf03 (including) | 8.0.0.0-cf03 (including) |
| Websphere_portal | Ibm | 8.0.0.0-cf04 (including) | 8.0.0.0-cf04 (including) |
| Websphere_portal | Ibm | 8.0.0.0-cf05 (including) | 8.0.0.0-cf05 (including) |
| Websphere_portal | Ibm | 8.0.0.0-cf06 (including) | 8.0.0.0-cf06 (including) |
| Websphere_portal | Ibm | 8.0.0.1 (including) | 8.0.0.1 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf04 (including) | 8.0.0.1-cf04 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf05 (including) | 8.0.0.1-cf05 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf06 (including) | 8.0.0.1-cf06 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf07 (including) | 8.0.0.1-cf07 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf08 (including) | 8.0.0.1-cf08 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf09 (including) | 8.0.0.1-cf09 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf10 (including) | 8.0.0.1-cf10 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf11 (including) | 8.0.0.1-cf11 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf12 (including) | 8.0.0.1-cf12 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf13 (including) | 8.0.0.1-cf13 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf14 (including) | 8.0.0.1-cf14 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf15 (including) | 8.0.0.1-cf15 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf16 (including) | 8.0.0.1-cf16 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf17 (including) | 8.0.0.1-cf17 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf18 (including) | 8.0.0.1-cf18 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf19 (including) | 8.0.0.1-cf19 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf20 (including) | 8.0.0.1-cf20 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf21 (including) | 8.0.0.1-cf21 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf22 (including) | 8.0.0.1-cf22 (including) |
| Websphere_portal | Ibm | 8.0.0.1-cf23 (including) | 8.0.0.1-cf23 (including) |
| Websphere_portal | Ibm | 8.5.0.0 (including) | 8.5.0.0 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf01 (including) | 8.5.0.0-cf01 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf02 (including) | 8.5.0.0-cf02 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf03 (including) | 8.5.0.0-cf03 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf04 (including) | 8.5.0.0-cf04 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf05 (including) | 8.5.0.0-cf05 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf06 (including) | 8.5.0.0-cf06 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf07 (including) | 8.5.0.0-cf07 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf08 (including) | 8.5.0.0-cf08 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf09 (including) | 8.5.0.0-cf09 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf10 (including) | 8.5.0.0-cf10 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf11 (including) | 8.5.0.0-cf11 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf12 (including) | 8.5.0.0-cf12 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf13 (including) | 8.5.0.0-cf13 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf14 (including) | 8.5.0.0-cf14 (including) |
| Websphere_portal | Ibm | 8.5.0.0-cf15 (including) | 8.5.0.0-cf15 (including) |
| Websphere_portal | Ibm | 9.0.0.0 (including) | 9.0.0.0 (including) |
| Websphere_portal | Ibm | 9.0.0.0-cf14 (including) | 9.0.0.0-cf14 (including) |
| Websphere_portal | Ibm | 9.0.0.0-cf15 (including) | 9.0.0.0-cf15 (including) |