Bypassing AccessControl REST API Access Restrictions in IBM WebSphere Portal

Bypassing AccessControl REST API Access Restrictions in IBM WebSphere Portal

CVE-2015-7447 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF20, and 8.5.0 before CF09 allows remote attackers to bypass intended Portal AccessControl REST API access restrictions and obtain sensitive information via unspecified vectors.

Learn more about our Cis Benchmark Audit For Ibm Websphere.