Penetration Testing UK

CVE-2015-7455

CVE-2015-7455

Severity Score

4.0

Access Vector

NETWORK

Complexity

LOW

Authentication

SINGLE_INSTANCE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

Summary

IBM WebSphere Portal 7.x through 7.0.0.2 CF29, 8.0.x before 8.0.0.1 CF20, and 8.5.x before 8.5.0.0 CF09 uses weak permissions for content items, which allows remote authenticated users to make modifications via the authoring UI.

Learn more about our Penetration Testing services.