CVE-2015-7399

EUVD-2015-7323
IBM WebSphere Message Broker 7 before 7.0.0.8 and 8 before 8.0.0.6 and IBM Integration Bus 9 before 9.0.0.3 and 10 before 10.0.0.0 allow remote attackers to obtain sensitive information about the HTTP server via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 45%
Affected Products (NVD)
VendorProductVersion
ibmintegration_bus
9.0
ibmintegration_bus
9.0.0.1
ibmintegration_bus
9.0.0.2
ibmintegration_bus
10.0
ibmwebsphere_message_broker
7.0.
ibmwebsphere_message_broker
7.0.0.1
ibmwebsphere_message_broker
7.0.0.2
ibmwebsphere_message_broker
7.0.0.3
ibmwebsphere_message_broker
7.0.0.4
ibmwebsphere_message_broker
7.0.0.5
ibmwebsphere_message_broker
7.0.0.6
ibmwebsphere_message_broker
7.0.0.7
ibmwebsphere_message_broker
8.0
ibmwebsphere_message_broker
8.0.0.1
ibmwebsphere_message_broker
8.0.0.2
ibmwebsphere_message_broker
8.0.0.3
ibmwebsphere_message_broker
8.0.0.4
ibmwebsphere_message_broker
8.0.0.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg1IC99031
http://www-01.ibm.com/support/docview.wss?uid=swg21969672
http://www.securitytracker.com/id/1034999
http://www-01.ibm.com/support/docview.wss?uid=swg1IC99031
http://www-01.ibm.com/support/docview.wss?uid=swg21969672
http://www.securitytracker.com/id/1034999