Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere application server 7.0 vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2020-4464
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional could allow a remote malicious user to execute arbitrary code on a system with a specially-crafted sequence of serialized objects over the SOAP connector. IBM X-Force ID: 181489.
Ibm Websphere Application Server
2 Github repositories
7.8
CVSSv2
CVE-2016-8919
IBM WebSphere Application Server may be vulnerable to a denial of service, caused by allowing serialized objects from untrusted sources to run and cause the consumption of resources.
Ibm Websphere Application Server 9.0
Ibm Websphere Application Server 8.5.5
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 7.0
7.5
CVSSv2
CVE-2018-1904
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow remote malicious users to execute arbitrary Java code through an administrative client class with a serialized object from untrusted sources. IBM X-Force ID: 152533.
Ibm Websphere Application Server
7.5
CVSSv2
CVE-2018-1567
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow remote malicious users to execute arbitrary Java code through the SOAP connector with a serialized object from untrusted sources. IBM X-Force ID: 143024.
Ibm Websphere Application Server
1 Article
7.5
CVSSv2
CVE-2011-4889
The javax.naming.directory.AttributeInUseException class in the Virtual Member Manager in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.43, 7.0 prior to 7.0.0.21, and 8.0 prior to 8.0.0.2 does not properly update passwords on a configuration using Tivoli Directory Ser...
Ibm Websphere Application Server
7.5
CVSSv2
CVE-2011-1309
The Plug-in component in IBM WebSphere Application Server (WAS) prior to 7.0.0.15 does not properly handle trace requests, which has unspecified impact and attack vectors.
Ibm Websphere Application Server 7.0.0.11
Ibm Websphere Application Server 7.0.0.1
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 6.0.2.30
Ibm Websphere Application Server 6.0.2.29
Ibm Websphere Application Server 6.0.2.4
Ibm Websphere Application Server 6.0.2.9
Ibm Websphere Application Server 6.0.2
Ibm Websphere Application Server 6.0.2.19
Ibm Websphere Application Server 6.0.1
Ibm Websphere Application Server 6.0.0.2
Ibm Websphere Application Server 5.1.1.7
Ibm Websphere Application Server 5.1.1.5
Ibm Websphere Application Server 6.0.1.17
Ibm Websphere Application Server 5.1.0.2
Ibm Websphere Application Server 5.0.2.8
Ibm Websphere Application Server 5.0.2.2
Ibm Websphere Application Server 5.0.2.16
Ibm Websphere Application Server 5.0.2.10
Ibm Websphere Application Server 6.0.1.3
Ibm Websphere Application Server 6.0.1.1
Ibm Websphere Application Server 4.0.2
7.5
CVSSv2
CVE-2010-1632
Apache Axis2 prior to 1.5.2, as used in IBM WebSphere Application Server (WAS) 7.0 up to and including 7.0.0.12, IBM Feature Pack for Web Services 6.1.0.9 up to and including 6.1.0.32, IBM Feature Pack for Web 2.0 1.0.1.0, Apache Synapse, Apache ODE, Apache Tuscany, Apache Geroni...
Apache Axis2 1.4
Apache Axis2 1.3
Apache Axis2 1.4.1
Apache Axis2 1.5
Apache Axis2
7.5
CVSSv2
CVE-2010-2324
IBM WebSphere Application Server (WAS) 7.0 prior to 7.0.0.11 on z/OS allows malicious users to perform unspecified "link injection" actions via unknown vectors.
Ibm Websphere Application Server
Ibm Websphere Application Server 7.0.0.4
Ibm Websphere Application Server 7.0.0.5
Ibm Websphere Application Server 7.0.0.3
Ibm Websphere Application Server 7.0.0.6
Ibm Websphere Application Server 7.0.0.8
Ibm Websphere Application Server 7.0.0.7
Ibm Websphere Application Server 7.0.0.9
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 7.0.0.1
Ibm Websphere Application Server 7.0.0.2
7.5
CVSSv2
CVE-2010-1182
Multiple unspecified vulnerabilities in the administrative console in IBM WebSphere Application Server (WAS) 7.0.x prior to 7.0.0.9 on z/OS have unknown impact and attack vectors.
Ibm Websphere Application Server 7.0.0.7
Ibm Websphere Application Server 7.0.0.8
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 7.0.0.1
Ibm Websphere Application Server 7.0.0.2
Ibm Websphere Application Server 7.0.0.4
Ibm Websphere Application Server 7.0.0.6
Ibm Websphere Application Server 7.0.0.3
Ibm Websphere Application Server 7.0.0.5
7.5
CVSSv2
CVE-2009-2085
The Security component in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.25 and 7.0 prior to 7.0.0.5 does not properly handle use of Identity Assertion with CSIv2 Security, which allows remote malicious users to bypass intended CSIv2 access restrictions via vectors inv...
Ibm Websphere Application Server 6.1.0.19
Ibm Websphere Application Server 6.1.0.24
Ibm Websphere Application Server 6.1.0.23
Ibm Websphere Application Server 6.1.0.15
Ibm Websphere Application Server 6.1.0.7
Ibm Websphere Application Server 6.1.0.13
Ibm Websphere Application Server 6.1.0.12
Ibm Websphere Application Server 6.1
Ibm Websphere Application Server 6.1.0.4
Ibm Websphere Application Server 6.1.0.21
Ibm Websphere Application Server 6.1.0.2
Ibm Websphere Application Server 6.1.0.3
Ibm Websphere Application Server 6.1.0.0
Ibm Websphere Application Server 6.1.0
Ibm Websphere Application Server 7.0.0.4
Ibm Websphere Application Server 7.0.0.3
Ibm Websphere Application Server 6.1.0.8
Ibm Websphere Application Server 6.1.0.6
Ibm Websphere Application Server 6.1.0.1
Ibm Websphere Application Server 6.1.0.16
Ibm Websphere Application Server 6.1.0.14
Ibm Websphere Application Server 6.1.0.17
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »