Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere application server 7.0 vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2017-1741
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote malicious user to obtain sensitive information caused by improper handling of Administrative Console panel fields. When exploited an attacker could read files on the file system. IBM X-Force ID: 134931.
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 8.5
Ibm Websphere Application Server 9.0
605
VMScore
CVE-2017-1194
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 123669.
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 8.5
Ibm Websphere Application Server 9.0
445
VMScore
CVE-2009-2091
The System Management/Repository component in IBM WebSphere Application Server (WAS) 7.0 prior to 7.0.0.5 on z/OS uses weak file permissions for new applications, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Ibm Websphere Application Server 7.0.0.4
Ibm Websphere Application Server 7.0.0.3
Ibm Websphere Application Server 7.0.0.1
Ibm Websphere Application Server 7.0
383
VMScore
CVE-2018-1793
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using SAML ear is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure wi...
Ibm Websphere Application Server 8.5
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 9.0
445
VMScore
CVE-2009-2090
Unspecified vulnerability in wsadmin in the System Management/Repository component in IBM WebSphere Application Server (WAS) 7.0 prior to 7.0.0.5 allows remote malicious users to bypass intended Java Management Extensions (JMX) Management Beans (aka MBeans) access restrictions, a...
Ibm Websphere Application Server 7.0.0.4
Ibm Websphere Application Server 7.0.0.3
Ibm Websphere Application Server 7.0.0.1
Ibm Websphere Application Server 7.0
668
VMScore
CVE-2009-2092
IBM WebSphere Application Server (WAS) 7.0 prior to 7.0.0.5 does not properly read the portletServingEnabled parameter in ibm-portlet-ext.xmi, which allows remote malicious users to bypass intended access restrictions via unknown vectors.
Ibm Websphere Application Server 7.0.0.1
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 7.0.0.4
Ibm Websphere Application Server 7.0.0.3
383
VMScore
CVE-2017-1503
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted URL to cause the server to return a split response, once the URL is clicked. This would allow the m...
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 8.5
Ibm Websphere Application Server 9.0
614
VMScore
CVE-2019-4732
IBM SDK, Java Technology Edition Version 7.0.0.0 up to and including 7.0.10.55, 7.1.0.0 up to and including 7.1.4.55, and 8.0.0.0 up to and including 8.0.6.0 could allow a local authenticated malicious user to execute arbitrary code on the system, caused by DLL search order hijac...
Ibm Sdk
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 8.5
Ibm Websphere Application Server 9.0
392
VMScore
CVE-2015-1946
IBM WebSphere Application Server (WAS) 8.5 prior to 8.5.5.6, and WebSphere Virtual Enterprise 7.0 prior to 7.0.0.6 for WebSphere Application Server (WAS) 7.0 and 8.0, does not properly implement user roles, which allows local users to gain privileges via unspecified vectors.
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 8.5.0.1
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 8.5.5.2
Ibm Websphere Application Server 8.5.5.3
Ibm Websphere Application Server 8.5.5.4
Ibm Websphere Application Server 8.5.5.5
Ibm Websphere Application Server 8.0.0.0
Ibm Websphere Application Server 8.5.5.0
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Virtual Enterprise 7.0.0.4
Ibm Websphere Virtual Enterprise 7.0.0.5
Ibm Websphere Virtual Enterprise 7.0
Ibm Websphere Virtual Enterprise 7.0.0.1
Ibm Websphere Virtual Enterprise 7.0.0.2
Ibm Websphere Virtual Enterprise 7.0.0.3
383
VMScore
CVE-2014-0823
IBM WebSphere Application Server (WAS) 8.x prior to 8.0.0.9 and 8.5.x prior to 8.5.5.2 allows remote malicious users to read arbitrary files via a crafted URL.
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.5.5.0
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 8.5.0.1
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 8.0.0.2
Ibm Websphere Application Server 8.0.0.3
Ibm Websphere Application Server 8.0.0.0
Ibm Websphere Application Server 8.0.0.1
Ibm Websphere Application Server 8.0.0.8
Ibm Websphere Application Server 8.0.0.4
Ibm Websphere Application Server 8.0.0.5
Ibm Websphere Application Server 8.0.0.6
Ibm Websphere Application Server 8.0.0.7
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36954
CVE-2024-36933
CVE-2024-24919
CVE-2024-36923
CVE-2024-2961
CVE-2024-36925
bypass
encryption
command injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »