CVE-2008-0402

medium

Description

Unspecified vulnerability in IBM WebSphere Business Modeler Basic and Advanced 6.0.2.1 before Interim Fix 11 allows remote authenticated users to bypass intended access restrictions and delete unspecified repository resources via unknown vectors, even when they are not administrators or members of the repository's owning group.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/39830

http://www.vupen.com/english/advisories/2008/0254

http://www.securitytracker.com/id?1019252

http://www.securityfocus.com/bid/27389

http://www-1.ibm.com/support/search.wss?rs=0&q=JR28175&apar=only

http://www-1.ibm.com/support/docview.wss?uid=swg24018061

http://www-1.ibm.com/support/docview.wss?uid=swg24018060

http://secunia.com/advisories/28586

Details

Source: Mitre, NVD

Published: 2008-01-23

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 6

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Severity: Medium

EPSS

EPSS: 0.0043