What is the severity of CVE-2016-5954?

CVE-2016-5954 is classified as a denial of service vulnerability.

How do I fix CVE-2016-5954?

To fix CVE-2016-5954, ensure that you apply the latest patches or updates provided by IBM for the WebSphere Portal.

Which versions of IBM WebSphere Portal are affected by CVE-2016-5954?

CVE-2016-5954 affects IBM WebSphere Portal versions 6.1.0 through 8.5.0 before CF12.

What kind of attack does CVE-2016-5954 enable?

CVE-2016-5954 allows remote authenticated users to upload temporary files, leading to potential denial of service.

Is CVE-2016-5954 a remote vulnerability?

Yes, CVE-2016-5954 allows authenticated remote users to exploit the vulnerability.

Vulnerability/
CVE-2016-5954

medium

6.5

CWE

284

12/9/2016

6/8/2024

CVE-2016-5954

First published: Mon Sep 12 2016(Updated: )

IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF30, 8.0.0 through 8.0.0.1 CF21, and 8.5.0 before CF12 allows remote authenticated users to cause a denial of service by uploading temporary files.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM WebSphere Portal	=6.1.0.0
IBM WebSphere Portal	=6.1.0.1
IBM WebSphere Portal	=6.1.0.2
IBM WebSphere Portal	=6.1.0.3
IBM WebSphere Portal	=6.1.0.4
IBM WebSphere Portal	=6.1.0.5
IBM WebSphere Portal	=6.1.0.6
IBM WebSphere Portal	=6.1.5.0
IBM WebSphere Portal	=6.1.5.1
IBM WebSphere Portal	=6.1.5.2
IBM WebSphere Portal	=6.1.5.3
IBM WebSphere Portal	=7.0.0.0
IBM WebSphere Portal	=7.0.0.1
IBM WebSphere Portal	=7.0.0.2
IBM WebSphere Portal	=8.0.0.0
IBM WebSphere Portal	=8.0.0.1
IBM WebSphere Portal	=8.5.0.0

Remedy

http://www-01.ibm.com/support/docview.wss?uid=swg21989993

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-5954?
CVE-2016-5954 is classified as a denial of service vulnerability.
How do I fix CVE-2016-5954?
To fix CVE-2016-5954, ensure that you apply the latest patches or updates provided by IBM for the WebSphere Portal.
Which versions of IBM WebSphere Portal are affected by CVE-2016-5954?
CVE-2016-5954 affects IBM WebSphere Portal versions 6.1.0 through 8.5.0 before CF12.
What kind of attack does CVE-2016-5954 enable?
CVE-2016-5954 allows remote authenticated users to upload temporary files, leading to potential denial of service.
Is CVE-2016-5954 a remote vulnerability?
Yes, CVE-2016-5954 allows authenticated remote users to exploit the vulnerability.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/author
agent/remedy
agent/weakness
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm websphere portal
version/ibm websphere portal/6.1.0.0
version/ibm websphere portal/6.1.0.1
version/ibm websphere portal/6.1.0.2
version/ibm websphere portal/6.1.0.3
version/ibm websphere portal/6.1.0.4
version/ibm websphere portal/6.1.0.5
version/ibm websphere portal/6.1.0.6
version/ibm websphere portal/6.1.5.0
version/ibm websphere portal/6.1.5.1
version/ibm websphere portal/6.1.5.2
version/ibm websphere portal/6.1.5.3
version/ibm websphere portal/7.0.0.0
version/ibm websphere portal/7.0.0.1
version/ibm websphere portal/7.0.0.2
version/ibm websphere portal/8.0.0.0
version/ibm websphere portal/8.0.0.1
version/ibm websphere portal/8.5.0.0