Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere application server 8.5.0.0 vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2018-1838
IBM WebSphere Application Server 8.5 and 9.0 in IBM Cloud could allow a remote malicious user to obtain sensitive information caused by improper handling of passwords. IBM X-Force ID: 150811.
Ibm Websphere Application Server
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 9.0.0.0
187
VMScore
CVE-2018-1621
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local malicious user to obtain clear text password in a trace file caused by improper handling of some datasource custom properties. IBM X-Force ID: 144346.
Ibm Websphere Application Server 7.0.0.0
Ibm Websphere Application Server 8.0.0.0
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 9.0.0.0
383
VMScore
CVE-2013-4006
IBM WebSphere Application Server (WAS) Liberty Profile 8.5 prior to 8.5.5.1 uses weak permissions for unspecified files, which allows local users to obtain sensitive information via standard filesystem operations.
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 8.5.5.0
Ibm Websphere Application Server 8.5.0.1
Ibm Websphere Application Server 8.5.0.0
383
VMScore
CVE-2014-0896
IBM WebSphere Application Server (WAS) Liberty Profile 8.5.x prior to 8.5.5.2 allows remote malicious users to obtain sensitive information via a crafted request.
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.5.0.1
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 8.5.5.0
312
VMScore
CVE-2013-0540
IBM WebSphere Application Server (WAS) Liberty Profile 8.5 prior to 8.5.0.2, when SSL is not enabled, does not properly validate authentication cookies, which allows remote authenticated users to bypass intended access restrictions via an HTTP session.
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.5.0.1
383
VMScore
CVE-2013-0565
Cross-site scripting (XSS) vulnerability in the RPC adapter for the Web 2.0 and Mobile toolkit in IBM WebSphere Application Server (WAS) 8.5 prior to 8.5.0.2 allows remote malicious users to inject arbitrary web script or HTML via a crafted response.
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.5.0.1
578
VMScore
CVE-2014-4767
IBM WebSphere Application Server (WAS) Liberty Profile 8.5.x prior to 8.5.5.3 does not properly use the Liberty Repository for feature installation, which allows remote authenticated users to execute arbitrary code via unspecified vectors.
Ibm Websphere Application Server 8.5.0.1
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.5.5.0
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 8.5.5.2
454
VMScore
CVE-2014-8890
IBM WebSphere Application Server Liberty Profile 8.5.x prior to 8.5.5.4 allows remote malicious users to gain privileges by leveraging the combination of a servlet's deployment descriptor security constraints and ServletSecurity annotations.
Ibm Websphere Application Server 8.5.0.1
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.5.5.3
Ibm Websphere Application Server 8.5.5.2
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 8.5.5.0
Ibm Websphere Application Server 8.5.0.2
756
VMScore
CVE-2015-1882
Multiple race conditions in IBM WebSphere Application Server (WAS) 8.5 Liberty Profile prior to 8.5.5.5 allow remote authenticated users to gain privileges by leveraging thread conflicts that result in Java code execution outside the context of the configured EJB Run-as user.
Ibm Websphere Application Server 8.5.5.0
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 8.5.5.2
Ibm Websphere Application Server 8.5.5.3
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 8.5.5.4
Ibm Websphere Application Server 8.5.0.1
356
VMScore
CVE-2015-0174
The SNMP implementation in IBM WebSphere Application Server (WAS) 8.5 prior to 8.5.5.5 does not properly handle configuration data, which allows remote authenticated users to obtain sensitive information via unspecified vectors.
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.5.0.1
Ibm Websphere Application Server 8.5.5.3
Ibm Websphere Application Server 8.5.5.4
Ibm Websphere Application Server 8.5.5.0
Ibm Websphere Application Server 8.5.5.2
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 8.5.5.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »