CyberSec.Space Logo
Back to CVE Browser

CVE-2014-3060

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0800%
EPSS Percentile34.91th
PublishedOct 2, 2014
Last ModifiedMay 6, 2026

Vulnerability Description

Unspecified vulnerability on the IBM WebSphere DataPower XC10 appliance 2.5 allows remote attackers to obtain administrative privileges by leveraging access to an eXtreme Scale distributed ObjectGrid network and capturing a session cookie.

Affected Platforms (CPE)

πŸ’»
Ibm

Websphere Datapower Xc10 Appliance Firmware

= 2.5.0.0
πŸ”Œ
Ibm

Websphere Datapower Xc10 Appliance

All versions

References & Advisories

πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg1IT03476
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg21685705
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/93534
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg1IT03476
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg21685705
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/93534

Related Vulnerabilities

CVE-2014-052410.0

Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code...

CVE-2014-049810.0

Stack-based buffer overflow in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Ma...

CVE-2014-052310.0

Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code...

CVE-2014-052810.0

Double free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attac...