VYPR
Unrated severityNVD Advisory· Published Apr 1, 2010· Updated Jun 16, 2026

CVE-2010-0769

CVE-2010-0769

Description

IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 does not properly define wsadmin scripting J2CConnectionFactory objects, which allows local users to discover a KeyRingPassword password by reading a cleartext field in the resources.xml file.

Affected products

48
  • cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:*:*:*:*+ 47 more
    • cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:*:*:*:*range: <=6.0.2.39
    • cpe:2.3:a:ibm:websphere_application_server:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.11:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.13:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.15:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.17:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.19:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.21:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.23:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.25:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.27:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.29:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.31:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.33:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.35:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.37:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.7:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.0.2.9:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.11:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.13:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.15:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.17:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.19:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.21:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.23:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.25:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.27:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:6.1.0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:7.0.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:7.0.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:7.0.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:7.0.0.7:*:*:*:*:*:*:*
    • (no CPE)range: <6.0.2.41, <6.1.0.31, <7.0.0.9

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.