CVE-2014-0958

Published: May 22, 2014Modified: May 6, 2026

5.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

Exploitability: 8.6 / Impact: 4.9

Source: NVD

Description

Open redirect vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF28, and 8.0 before 8.0.0.1 CF12 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Affected (59)

Products: Ibm: Websphere Portal

Ibm

1 product

Websphere Portal

Configuration A

59 vulnerable

Vulnerable Software	Affected Versions
Ibm Websphere Portal	Version 6.1.0.0
Ibm Websphere Portal	Version 6.1.0.1
Ibm Websphere Portal	Version 6.1.0.2
Ibm Websphere Portal	Version 6.1.0.3
Ibm Websphere Portal	Version 6.1.0.4
Ibm Websphere Portal	Version 6.1.0.5
Ibm Websphere Portal	Version 6.1.0.6
Ibm Websphere Portal	Version 6.1.0.6 cf27
Ibm Websphere Portal	Version 6.1.5.0
Ibm Websphere Portal	Version 6.1.5.1
Ibm Websphere Portal	Version 6.1.5.2
Ibm Websphere Portal	Version 6.1.5.3
Ibm Websphere Portal	Version 6.1.5.3 cf27
Ibm Websphere Portal	Version 7.0.0.0
Ibm Websphere Portal	Version 7.0.0.0 cf001
Ibm Websphere Portal	Version 7.0.0.1
Ibm Websphere Portal	Version 7.0.0.1 cf002
Ibm Websphere Portal	Version 7.0.0.1 cf003
Ibm Websphere Portal	Version 7.0.0.1 cf004
Ibm Websphere Portal	Version 7.0.0.1 cf005
Ibm Websphere Portal	Version 7.0.0.1 cf006
Ibm Websphere Portal	Version 7.0.0.1 cf007
Ibm Websphere Portal	Version 7.0.0.1 cf008
Ibm Websphere Portal	Version 7.0.0.1 cf009
Ibm Websphere Portal	Version 7.0.0.1 cf010
Ibm Websphere Portal	Version 7.0.0.1 cf019
Ibm Websphere Portal	Version 7.0.0.2
Ibm Websphere Portal	Version 7.0.0.2 cf011
Ibm Websphere Portal	Version 7.0.0.2 cf012
Ibm Websphere Portal	Version 7.0.0.2 cf013
Ibm Websphere Portal	Version 7.0.0.2 cf014
Ibm Websphere Portal	Version 7.0.0.2 cf015
Ibm Websphere Portal	Version 7.0.0.2 cf016
Ibm Websphere Portal	Version 7.0.0.2 cf017
Ibm Websphere Portal	Version 7.0.0.2 cf018
Ibm Websphere Portal	Version 7.0.0.2 cf019
Ibm Websphere Portal	Version 7.0.0.2 cf020
Ibm Websphere Portal	Version 7.0.0.2 cf021
Ibm Websphere Portal	Version 7.0.0.2 cf022
Ibm Websphere Portal	Version 7.0.0.2 cf23
Ibm Websphere Portal	Version 7.0.0.2 cf24
Ibm Websphere Portal	Version 7.0.0.2 cf25
Ibm Websphere Portal	Version 7.0.0.2 cf26
Ibm Websphere Portal	Version 7.0.0.2 cf27
Ibm Websphere Portal	Version 8.0.0.0
Ibm Websphere Portal	Version 8.0.0.0 cf01
Ibm Websphere Portal	Version 8.0.0.0 cf02
Ibm Websphere Portal	Version 8.0.0.0 cf03
Ibm Websphere Portal	Version 8.0.0.0 cf04
Ibm Websphere Portal	Version 8.0.0.0 cf05
Ibm Websphere Portal	Version 8.0.0.1
Ibm Websphere Portal	Version 8.0.0.1 cf04
Ibm Websphere Portal	Version 8.0.0.1 cf05
Ibm Websphere Portal	Version 8.0.0.1 cf07
Ibm Websphere Portal	Version 8.0.0.1 cf08
Ibm Websphere Portal	Version 8.0.0.1 cf09
Ibm Websphere Portal	Version 8.0.0.1 cf10
Ibm Websphere Portal	Version 8.0.0.1 cf11
Ibm Websphere Portal	Version 8.0.0.1 cf12

References (6)

http://www-01.ibm.com/support/docview.wss?uid=swg1PI15689

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg21672572

Source: psirt@us.ibm.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/92739

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg1PI15689

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg21672572

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/92739

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.