CVE-2007-6679

critical

Description

Unspecified vulnerability in the Administrative Console in IBM WebSphere Application Server 6.1 before Fix Pack 13 has unknown impact and attack vectors, related to "security concerns with monitor role users." NOTE: it was later reported that 6.0.2 before Fix Pack 25 is also affected.

References

http://www.vupen.com/english/advisories/2008/0241

http://www.vupen.com/english/advisories/2007/3955

http://www-1.ibm.com/support/search.wss?rs=0&q=PK45768&apar=only

http://www-1.ibm.com/support/docview.wss?uid=swg27006876

http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27007951

http://securitytracker.com/id?1019174

http://secunia.com/advisories/28588

Details

Source: Mitre, NVD

Published: 2008-01-10

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical