IBM WebSphere Service Registry and Repository Remote Access Bypass Vulnerability
CVE-2014-6186

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Service Registry And Repository
Vendor: CVE Published:; 24 December 2014

Summary

The IBM WebSphere Service Registry and Repository suffers from an access control bypass vulnerability, allowing remote authenticated users to circumvent intended restrictions on object access through the datagraph feature. This flaw can lead to unauthorized information exposure and manipulation, enabling attackers to exploit the system’s functionality, thus promoting potential security risks if left unaddressed. It is crucial to apply the necessary updates or patches to mitigate this vulnerability and protect sensitive data.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/98549

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg1IV26309

vendor-advisoryx_refsource_AIXAPAR

http://www.ibm.com/support/docview.wss?uid=swg21693384

x_refsource_CONFIRM

Timeline

Vulnerability published
Dec 24, 2014
Vulnerability Reserved
Sep 2, 2014