CyberSec.Space Logo
Back to CVE Browser

CVE-2014-8903

HIGH
8.8
CVSS Severity Score
EPSS Score0.0070%
EPSS Percentile36.93th
PublishedAug 2, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

IBM Curam Social Program Management 6.0 SP2 before EP26, 6.0.4 before 6.0.4.5iFix10 and 6.0.5 before 6.0.5.6 allows remote authenticated users to load arbitrary Java classes via unspecified vectors.

Affected Platforms (CPE)

πŸ“¦
Ibm

Curam Social Program Management

= 6.0
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.4.0
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.4.1
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.4.2
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.4.3
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.4.4
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.4.5
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.4.6
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.4.7
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.4.8
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.4.9
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5.0
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5.1
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5.2
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5.3
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5.4
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5.5
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5.6
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5.7
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5.8
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5.9
πŸ“¦
Ibm

Curam Social Program Management

= 6.0.5.10

References & Advisories

πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg21700098
πŸ”— http://www.securityfocus.com/bid/73947
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg21700098
πŸ”— http://www.securityfocus.com/bid/73947

Related Vulnerabilities

CVE-2016-61119.1

IBM Curam Social Program Management 6.0 and 7.0 are vulnerable to a denial of service, caused by an XML External Entity Injection ...

CVE-2020-49428.8

IBM Curam Social Program Management 7.0.9 and 7.0.11 is vulnerable to cross-site request forgery which could allow an attacker to ...

CVE-2020-47728.1

An XML External Entity Injection (XXE) vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. A remote att...

CVE-2020-47798.1

A HTTP Verb Tampering vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. By sending a specially-crafte...