Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm websphere application server 8.0.0.0 vulnerabilities and exploits

(subscribe to this query)
605
VMScore
CVE-2018-1695
IBM WebSphere Application Server 7.0, 8.0, and 8.5.5 installations using Form Login could allow a remote malicious user to conduct spoofing attacks. IBM X-Force ID: 145769.
Ibm Websphere Application Server 8.5.5.0Ibm Websphere Application Server 8.0.0.0Ibm Websphere Application Server 7.0.0.0
187
VMScore
CVE-2018-1621
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local malicious user to obtain clear text password in a trace file caused by improper handling of some datasource custom properties. IBM X-Force ID: 144346.
Ibm Websphere Application Server 7.0.0.0Ibm Websphere Application Server 8.0.0.0Ibm Websphere Application Server 8.5.0.0Ibm Websphere Application Server 9.0.0.0
312
VMScore
CVE-2013-4004
Cross-site scripting (XSS) vulnerability in the Administrative console in IBM WebSphere Application Server (WAS) 8.0 prior to 8.0.0.7 and 8.5 prior to 8.5.5.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Websphere Application Server 8.0.0.3Ibm Websphere Application Server 8.0.0.4Ibm Websphere Application Server 8.0.0.5Ibm Websphere Application Server 8.0.0.6Ibm Websphere Application Server 8.0.0.0Ibm Websphere Application Server 8.0.0.1Ibm Websphere Application Server 8.0.0.2Ibm Websphere Application Server 8.5.0.0Ibm Websphere Application Server 8.5.0.1Ibm Websphere Application Server 8.5.0.2
383
VMScore
CVE-2014-0823
IBM WebSphere Application Server (WAS) 8.x prior to 8.0.0.9 and 8.5.x prior to 8.5.5.2 allows remote malicious users to read arbitrary files via a crafted URL.
Ibm Websphere Application Server 8.5.0.0Ibm Websphere Application Server 8.5.5.0Ibm Websphere Application Server 8.5.5.1Ibm Websphere Application Server 8.5.0.1Ibm Websphere Application Server 8.5.0.2Ibm Websphere Application Server 7.0Ibm Websphere Application Server 8.0.0.2Ibm Websphere Application Server 8.0.0.3Ibm Websphere Application Server 8.0.0.0Ibm Websphere Application Server 8.0.0.1Ibm Websphere Application Server 8.0.0.8Ibm Websphere Application Server 8.0.0.4Ibm Websphere Application Server 8.0.0.5Ibm Websphere Application Server 8.0.0.6Ibm Websphere Application Server 8.0.0.7
356
VMScore
CVE-2014-0857
The Administrative Console in IBM WebSphere Application Server (WAS) 8.x prior to 8.0.0.9 and 8.5.x prior to 8.5.5.2 allows remote authenticated users to obtain sensitive information via a crafted request.
Ibm Websphere Application Server 8.5.5.1Ibm Websphere Application Server 8.5.0.2Ibm Websphere Application Server 8.5.5.0Ibm Websphere Application Server 8.5.0.0Ibm Websphere Application Server 8.5.0.1Ibm Websphere Application Server 7.0Ibm Websphere Application Server 8.0.0.4Ibm Websphere Application Server 8.0.0.5Ibm Websphere Application Server 8.0.0.6Ibm Websphere Application Server 8.0.0.7Ibm Websphere Application Server 8.0.0.8Ibm Websphere Application Server 8.0.0.2Ibm Websphere Application Server 8.0.0.3Ibm Websphere Application Server 8.0.0.0Ibm Websphere Application Server 8.0.0.1
445
VMScore
CVE-2011-1368
The JavaServer Faces (JSF) application functionality in IBM WebSphere Application Server 8.x prior to 8.0.0.1 does not properly handle requests, which allows remote malicious users to read unspecified files via unknown vectors.
Ibm Websphere Application Server 8.0.0.0
632
VMScore
CVE-2014-4764
IBM WebSphere Application Server (WAS) 8.0.x prior to 8.0.0.10 and 8.5.x prior to 8.5.5.3, when Load Balancer for IPv4 Dispatcher is enabled, allows remote malicious users to cause a denial of service (Load Balancer crash) via unspecified vectors.
Ibm Websphere Application Server 8.5.5.1Ibm Websphere Application Server 8.5.5.2Ibm Websphere Application Server 8.5.0.2Ibm Websphere Application Server 8.5.5.0Ibm Websphere Application Server 8.5.0.0Ibm Websphere Application Server 8.5.0.1Ibm Websphere Application Server 8.0.0.6Ibm Websphere Application Server 8.0.0.7Ibm Websphere Application Server 8.0.0.3Ibm Websphere Application Server 8.0.0.4Ibm Websphere Application Server 8.0.0.5Ibm Websphere Application Server 8.0.0.1Ibm Websphere Application Server 8.0.0.2Ibm Websphere Application Server 8.0.0.0Ibm Websphere Application Server 8.0.0.8Ibm Websphere Application Server 8.0.0.9
445
VMScore
CVE-2014-3070
The addFileRegistryAccount Virtual Member Manager (VMM) SPI Admin Task in IBM WebSphere Application Server (WAS) 8.0.x prior to 8.0.0.10 and 8.5.x prior to 8.5.5.3 does not properly create accounts, which allows remote malicious users to bypass intended access restrictions via un...
Ibm Websphere Application Server 8.5.0.1Ibm Websphere Application Server 8.5.0.2Ibm Websphere Application Server 8.5.5.0Ibm Websphere Application Server 8.5.5.1Ibm Websphere Application Server 8.5.0.0Ibm Websphere Application Server 8.5.5.2Ibm Websphere Application Server 8.0.0.3Ibm Websphere Application Server 8.0.0.4Ibm Websphere Application Server 8.0.0.5Ibm Websphere Application Server 8.0.0.6Ibm Websphere Application Server 8.0.0.0Ibm Websphere Application Server 8.0.0.1Ibm Websphere Application Server 8.0.0.2Ibm Websphere Application Server 8.0.0.9Ibm Websphere Application Server 8.0.0.7Ibm Websphere Application Server 8.0.0.8
383
VMScore
CVE-2014-6166
The Communications Enabled Applications (CEA) service in IBM WebSphere Application Server 8.0.x prior to 8.0.0.10 and 8.5.x prior to 8.5.5.4, and Feature Pack for CEA 1.x prior to 1.0.0.15, allows remote malicious users to read arbitrary files via an XML external entity declarati...
Ibm Websphere Application Server 8.0.0.0Ibm Websphere Application Server 8.0.0.1Ibm Websphere Application Server 8.0.0.8Ibm Websphere Application Server 8.0.0.9Ibm Websphere Application Server 8.5.5.3Ibm Websphere Application Server 8.0.0.6Ibm Websphere Application Server 8.0.0.7Ibm Websphere Application Server 8.5.5.1Ibm Websphere Application Server 8.5.5.2Ibm Websphere Application Server 8.0.0.4Ibm Websphere Application Server 8.0.0.5Ibm Websphere Application Server 8.5.0.2Ibm Websphere Application Server 8.5.5.0Ibm Websphere Application Server 8.0.0.2Ibm Websphere Application Server 8.0.0.3Ibm Websphere Application Server 8.5.0.0Ibm Websphere Application Server 8.5.0.1
445
VMScore
CVE-2014-6164
IBM WebSphere Application Server 8.0.x prior to 8.0.0.10 and 8.5.x prior to 8.5.5.4 allows remote malicious users to spoof OpenID and OpenID Connect cookies, and consequently obtain sensitive information, via a crafted URL.
Ibm Websphere Application Server 8.0.0.7Ibm Websphere Application Server 8.0.0.8Ibm Websphere Application Server 8.5.5.2Ibm Websphere Application Server 8.5.5.3Ibm Websphere Application Server 8.0.0.0Ibm Websphere Application Server 8.0.0.1Ibm Websphere Application Server 8.0.0.2Ibm Websphere Application Server 8.0.0.9Ibm Websphere Application Server 8.5.0.0Ibm Websphere Application Server 8.0.0.3Ibm Websphere Application Server 8.0.0.4Ibm Websphere Application Server 8.5.0.1Ibm Websphere Application Server 8.5.0.2Ibm Websphere Application Server 8.0.0.5Ibm Websphere Application Server 8.0.0.6Ibm Websphere Application Server 8.5.5.0Ibm Websphere Application Server 8.5.5.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook