Security Advisory

CVE-2011-1312

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2011-03-08 21:00:00

Last updated 2024-09-17 02:16:02

Assigner mitre

State PUBLISHED

Description

The Administrative Console component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.31 and 7.x before 7.0.0.15 does not prevent modifications of the primary admin id, which allows remote authenticated administrators to bypass intended access restrictions by mapping a (1) user or (2) group to an administrator role.

← Browse all CVEs View on cve.org ↗