CVE-2010-2644

Published: Dec 22, 2010Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

IBM WebSphere Service Registry and Repository (WSRR) 7.0.0 before FP1 does not properly implement access control, which allows remote attackers to perform governance actions via unspecified API requests to an EJB interface.

Affected (1)

Products: Ibm: Websphere Service Registry And Repository

Ibm

1 product

Websphere Service Registry And Repository

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ibm Websphere Service Registry And Repository	Version 7.0.0

Related CWEs

CWE-264

References (8)

http://secunia.com/advisories/42742

Source: cve@mitre.org

http://www-01.ibm.com/support/docview.wss?uid=swg1IZ72563

Source: cve@mitre.org

http://www-01.ibm.com/support/docview.wss?uid=swg24026132

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/63640

Source: cve@mitre.org

http://secunia.com/advisories/42742

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg1IZ72563

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg24026132

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/63640

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.