VYPR
Unrated severityNVD Advisory· Published Jul 14, 2015· Updated Jun 17, 2026

CVE-2015-1946

CVE-2015-1946

Description

IBM WebSphere Application Server (WAS) 8.5 before 8.5.5.6, and WebSphere Virtual Enterprise 7.0 before 7.0.0.6 for WebSphere Application Server (WAS) 7.0 and 8.0, does not properly implement user roles, which allows local users to gain privileges via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

19
  • cpe:2.3:a:ibm:websphere_application_server:7.0:*:*:*:*:*:*:*+ 11 more
    • cpe:2.3:a:ibm:websphere_application_server:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:8.0.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:8.5.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:8.5.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:8.5.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:8.5.5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:8.5.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:8.5.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:8.5.5.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:8.5.5.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_application_server:8.5.5.5:*:*:*:*:*:*:*
    • (no CPE)range: <8.5.5.6
  • cpe:2.3:a:ibm:websphere_virtual_enterprise:7.0:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:ibm:websphere_virtual_enterprise:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_virtual_enterprise:7.0.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_virtual_enterprise:7.0.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_virtual_enterprise:7.0.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_virtual_enterprise:7.0.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_virtual_enterprise:7.0.0.5:*:*:*:*:*:*:*
    • (no CPE)range: <7.0.0.6

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.