CVE-2011-1368

The JavaServer Faces (JSF) application functionality in IBM WebSphere Application Server 8.x before 8.0.0.1 does not properly handle requests, which allows remote attackers to read unspecified files via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 43%
VendorProductVersion
ibmwebsphere_application_server
8.0.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg24030916
http://www.ibm.com/support/docview.wss?uid=swg1PM45992
https://exchange.xforce.ibmcloud.com/vulnerabilities/70168
http://www-01.ibm.com/support/docview.wss?uid=swg24030916
http://www.ibm.com/support/docview.wss?uid=swg1PM45992
https://exchange.xforce.ibmcloud.com/vulnerabilities/70168