PT-2015-1331 · Ibm · Ibm Websphere Portal

Published

2015-05-24

Updated

2015-05-26

CVE-2015-1899

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions IBM WebSphere Portal versions 8.5 through CF05

Description The issue is related to resource management errors in the IBM WebSphere Portal server application interface. It allows remote attackers to cause a denial of service, specifically CPU consumption, via unspecified vectors. This can be exploited by a remote attacker to disrupt service.

Recommendations For IBM WebSphere Portal versions 8.5 through CF05, consider restricting resource-intensive operations to minimize the risk of CPU consumption until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

BDU:2015-10419

CVE-2015-1899

Affected Products

Ibm Websphere Portal

PT-2015-1331 · Ibm · Ibm Websphere Portal

CVE-2015-1899

Weakness Enumeration

Related Identifiers

Affected Products

References · 5