CVE-2015-7472

Published: Feb 15, 2016Modified: May 6, 2026

7.2

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Exploitability: 3.9 / Impact: 2.7

Source: NVD

Description

IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF20, and 8.5.0 before CF10 allows remote attackers to conduct LDAP injection attacks, and consequently read or write to repository data, via unspecified vectors.

Affected (17)

Products: Ibm: Websphere Portal

Ibm

1 product

Websphere Portal

Configuration A

17 vulnerable

Vulnerable Software	Affected Versions
Ibm Websphere Portal	Version 6.1.0.0
Ibm Websphere Portal	Version 6.1.0.1
Ibm Websphere Portal	Version 6.1.0.2
Ibm Websphere Portal	Version 6.1.0.3
Ibm Websphere Portal	Version 6.1.0.4
Ibm Websphere Portal	Version 6.1.0.5
Ibm Websphere Portal	Version 6.1.0.6
Ibm Websphere Portal	Version 6.1.5.0
Ibm Websphere Portal	Version 6.1.5.1
Ibm Websphere Portal	Version 6.1.5.2
Ibm Websphere Portal	Version 6.1.5.3
Ibm Websphere Portal	Version 7.0.0.0
Ibm Websphere Portal	Version 7.0.0.1
Ibm Websphere Portal	Version 7.0.0.2
Ibm Websphere Portal	Version 8.0.0.0
Ibm Websphere Portal	Version 8.0.0.1
Ibm Websphere Portal	Version 8.5.0.0

References (6)

http://www-01.ibm.com/support/docview.wss?uid=swg1PI53426

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg21972736

Source: psirt@us.ibm.com

Vendor Advisory

http://www.securitytracker.com/id/1035324

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg1PI53426

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg21972736

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securitytracker.com/id/1035324

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.