CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2014-3060

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0800%
EPSS Percentile34.91th
Published2014年10月2日
Last Modified2026年5月6日

Vulnerability Description

Unspecified vulnerability on the IBM WebSphere DataPower XC10 appliance 2.5 allows remote attackers to obtain administrative privileges by leveraging access to an eXtreme Scale distributed ObjectGrid network and capturing a session cookie.

Affected Platforms (CPE)

💻
Ibm

Websphere Datapower Xc10 Appliance Firmware

= 2.5.0.0
🔌
Ibm

Websphere Datapower Xc10 Appliance

All versions

References & Advisories

🔗 http://www-01.ibm.com/support/docview.wss?uid=swg1IT03476
🔗 http://www-01.ibm.com/support/docview.wss?uid=swg21685705
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/93534
🔗 http://www-01.ibm.com/support/docview.wss?uid=swg1IT03476
🔗 http://www-01.ibm.com/support/docview.wss?uid=swg21685705
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/93534

相關漏洞威脅

CVE-2014-052310.0

Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code...

CVE-2014-052410.0

Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code...

CVE-2014-049810.0

Stack-based buffer overflow in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Ma...

CVE-2014-052810.0

Double free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attac...