CVE-2011-0679

Published: Jan 28, 2011Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

IBM WebSphere Portal 6.0.1.1 through 7.0.0.0, as used in IBM Lotus Web Content Management (WCM) and IBM Lotus Quickr for WebSphere Portal, allows remote attackers to obtain sensitive information via a "modified message."

Affected (13)

Products: Ibm: Websphere Portal

1 product

Websphere Portal

Configuration A

13 vulnerable

Vulnerable Software	Affected Versions
Ibm Websphere Portal	Version 6.0.1.1
Ibm Websphere Portal	Version 6.0.1.2
Ibm Websphere Portal	Version 6.0.1.3
Ibm Websphere Portal	Version 6.0.1.4
Ibm Websphere Portal	Version 6.0.1.5
Ibm Websphere Portal	Version 6.0.1.6
Ibm Websphere Portal	Version 6.0.1.7
Ibm Websphere Portal	Version 6.1.0.0
Ibm Websphere Portal	Version 6.1.0.1
Ibm Websphere Portal	Version 6.1.0.2
Ibm Websphere Portal	Version 6.1.0.3
Ibm Websphere Portal	Version 6.1.5.0
Ibm Websphere Portal	Version 7.0.0.0

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (28)

http://osvdb.org/70688

Source: cve@mitre.org

http://secunia.com/advisories/43081

Source: cve@mitre.org

Vendor Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg1PM22159

Source: cve@mitre.org

http://www-01.ibm.com/support/docview.wss?uid=swg1PM22167

Source: cve@mitre.org

http://www-01.ibm.com/support/docview.wss?uid=swg1PM24319

Source: cve@mitre.org

http://www-01.ibm.com/support/docview.wss?uid=swg1PM24320

Source: cve@mitre.org

http://www-01.ibm.com/support/docview.wss?uid=swg1PM25191

Source: cve@mitre.org

http://www-01.ibm.com/support/docview.wss?uid=swg1PM25698

Source: cve@mitre.org

http://www-01.ibm.com/support/docview.wss?uid=swg1PM26397

Source: cve@mitre.org

http://www.ibm.com/support/docview.wss?uid=swg21460422

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/375127

Source: cve@mitre.org

US Government Resource

http://www.securityfocus.com/bid/45989

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2011/0223

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/64890

Source: cve@mitre.org

http://osvdb.org/70688

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/43081

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg1PM22159

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg1PM22167

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg1PM24319

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg1PM24320

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg1PM25191

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg1PM25698

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg1PM26397

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ibm.com/support/docview.wss?uid=swg21460422

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/375127

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.securityfocus.com/bid/45989

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2011/0223

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/64890

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.