CVE-2011-0679

IBM WebSphere Portal 6.0.1.1-7.0.0.0 - Exposure of Sensitive Information via Modified Message

Title source: llm
STIX 2.1

Description

IBM WebSphere Portal 6.0.1.1 through 7.0.0.0, as used in IBM Lotus Web Content Management (WCM) and IBM Lotus Quickr for WebSphere Portal, allows remote attackers to obtain sensitive information via a "modified message."

References (14)

Core 14
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/43081
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/64890
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0223
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PM25698
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/375127
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PM24319
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PM24320
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PM26397
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PM25191
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/70688
Various Sources x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg21460422
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PM22167
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PM22159
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/45989

Scores

EPSS 0.0384
EPSS Percentile 88.9%

Details

CWE
CWE-200
Status published
Products (13)
ibm/websphere_portal 6.0.1.1
ibm/websphere_portal 6.0.1.2
ibm/websphere_portal 6.0.1.3
ibm/websphere_portal 6.0.1.4
ibm/websphere_portal 6.0.1.5
ibm/websphere_portal 6.0.1.6
ibm/websphere_portal 6.0.1.7
ibm/websphere_portal 6.1.0.0
ibm/websphere_portal 6.1.0.1
ibm/websphere_portal 6.1.0.2
... and 3 more
Published Jan 28, 2011
Tracked Since Feb 18, 2026