Configuration Bypass Vulnerability in IBM WebSphere Service Registry and Repository
CVE-2009-2750

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Service Registry And Repository
Vendor: CVE Published:; 4 February 2010

What is CVE-2009-2750?

IBM WebSphere Service Registry and Repository (WSRR) 6.3.0 prior to Fix Pack 2 is susceptible to a configuration bypass vulnerability. This issue enables authenticated users to potentially gain unauthorized access to unspecified data through property queries, which can lead to data leakage and compromise sensitive information. Organizations utilizing affected versions need to assess their configurations and apply the necessary security patches to mitigate this risk.

References

http://www-01.ibm.com/support/docview.wss?uid=swg24025456

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/55744

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg1IZ66279

vendor-advisoryx_refsource_AIXAPAR

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 4, 2010
Vulnerability Reserved
Aug 12, 2009