Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere application server liberty vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-4466
IBM MQ for HPE NonStop 8.0.4 and 8.1.0 could allow a remote authenticated attacker could cause a denial of service due to an error within the Queue processing function. IBM X-Force ID: 181563.
Ibm Mq For Hpe Nonstop 8.0.4
Ibm Mq For Hpe Nonstop 8.1.0
6.3
CVSSv3
CVE-2019-4304
IBM WebSphere Application Server - Liberty could allow a remote malicious user to bypass security restrictions caused by improper session validation. IBM X-Force ID: 160950.
Ibm Websphere Application Server
6.1
CVSSv3
CVE-2020-4303
IBM WebSphere Application Server - Liberty 17.0.0.3 up to and including 20.0.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials dis...
Ibm Websphere Application Server
6.1
CVSSv3
CVE-2020-4304
IBM WebSphere Application Server - Liberty 17.0.0.3 up to and including 20.0.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials dis...
Ibm Websphere Application Server
6.1
CVSSv3
CVE-2016-0359
CRLF injection vulnerability in IBM WebSphere Application Server (WAS) 7.0 prior to 7.0.0.43, 8.0 prior to 8.0.0.13, 8.5 Full prior to 8.5.5.10, and 8.5 Liberty before Liberty Fix Pack 16.0.0.2 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP respon...
Ibm Websphere Application Server 8.5.5.6
Ibm Websphere Application Server 8.5.5.5
Ibm Websphere Application Server 8.0.0.5
Ibm Websphere Application Server 8.0.0.4
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 7.0.0.39
Ibm Websphere Application Server 7.0.0.41
Ibm Websphere Application Server 7.0.0.38
Ibm Websphere Application Server 7.0.0.31
Ibm Websphere Application Server 7.0.0.3
Ibm Websphere Application Server 7.0.0.21
Ibm Websphere Application Server 7.0.0.2
Ibm Websphere Application Server 7.0.0.13
Ibm Websphere Application Server 7.0.0.12
Ibm Websphere Application Server 8.5.5.4
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.0.0.3
Ibm Websphere Application Server 8.0.0.2
Ibm Websphere Application Server 7.0.0.9
Ibm Websphere Application Server 7.0.0.8
Ibm Websphere Application Server 7.0.0.37
Ibm Websphere Application Server 8.5.5.8
6.1
CVSSv3
CVE-2016-0283
Cross-site scripting (XSS) vulnerability in the OpenID Connect (OIDC) client web application in IBM WebSphere Application Server (WAS) Liberty Profile 8.5.5 prior to 8.5.5.9 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Application Server 8.5.5.4
Ibm Websphere Application Server 8.5.5.3
Ibm Websphere Application Server 8.5.5.2
Ibm Websphere Application Server 8.5.5.8
Ibm Websphere Application Server 8.5.5.7
Ibm Websphere Application Server 8.5.5.6
Ibm Websphere Application Server 8.5.5.5
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 8.5.5.0
5.9
CVSSv3
CVE-2018-1755
IBM WebSphere Application Server Liberty could allow a remote malicious user to obtain sensitive information, caused by incorrect transport being used when Liberty is configured to use Java Authentication SPI for Containers (JASPIC). This can happen when the Application Server is...
Ibm Websphere Application Server
5.4
CVSSv3
CVE-2022-34165
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 up to and including 22.0.0.9 are vulnerable to HTTP header injection, caused by improper validation. This could allow an malicious user to conduct various attacks against...
Ibm Websphere Application Server
5.4
CVSSv3
CVE-2021-39038
IBM WebSphere Application Server 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 up to and including 22.0.0.2 could allow a remote malicious user to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could e...
Ibm Websphere Application Server
5.4
CVSSv3
CVE-2020-4318
IBM Intelligent Operations Center for Emergency Management, Intelligent Operations Center (IOC), and IBM Water Operations for Waternamics are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the int...
Ibm Intelligent Operations Center 5.1.0
Ibm Intelligent Operations Center 5.1.0.2
Ibm Intelligent Operations Center 5.1.0.3
Ibm Intelligent Operations Center 5.1.0.4
Ibm Intelligent Operations Center 5.1.0.6
Ibm Intelligent Operations Center 5.2
Ibm Intelligent Operations Center 5.2.1
Ibm Intelligent Operations Center For Emergency Management 5.1.0
Ibm Intelligent Operations Center For Emergency Management 5.1.0.2
Ibm Intelligent Operations Center For Emergency Management 5.1.0.3
Ibm Intelligent Operations Center For Emergency Management 5.1.0.4
Ibm Intelligent Operations Center For Emergency Management 5.1.0.6
Ibm Water Operations For Waternamics 5.1.0
Ibm Water Operations For Waternamics 5.1.0.3
Ibm Water Operations For Waternamics 5.1.0.4
Ibm Water Operations For Waternamics 5.1.0.6
Ibm Water Operations For Waternamics 5.2
Ibm Water Operations For Waternamics 5.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »