Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere application server 9.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-23477
IBM WebSphere Application Server 8.5 and 9.0 traditional could allow a remote malicious user to execute arbitrary code on the system with a specially crafted sequence of serialized objects. IBM X-Force ID: 245513.
Ibm Websphere Application Server 8.5
Ibm Websphere Application Server 9.0
6.1
CVSSv3
CVE-2022-22477
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IB...
Ibm Websphere Application Server 8.5
Ibm Websphere Application Server 9.0
6.5
CVSSv3
CVE-2023-50313
IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security for outbound TLS connections caused by a failure to honor user configuration. IBM X-Force ID: 274812.
Ibm Websphere Application Server 9.0
Ibm Websphere Application Server 8.5
5.9
CVSSv3
CVE-2017-1501
IBM WebSphere Application Server 8.0, 8.5, and 9.0 could provide weaker than expected security after using the Admin Console to update the web services security bindings settings. IBM X-Force ID: 129576.
Ibm Websphere Application Server 9.0.0.3
Ibm Websphere Application Server 8.0.0.5
Ibm Websphere Application Server 8.0.0.11
Ibm Websphere Application Server 9.0.0.1
Ibm Websphere Application Server 8.0.0.7
Ibm Websphere Application Server 8.0.0.1
Ibm Websphere Application Server 9.0.0.0
Ibm Websphere Application Server 8.0.0.4
Ibm Websphere Application Server 8.5.5.11
Ibm Websphere Application Server 8.0.0.12
Ibm Websphere Application Server 8.0.0.8
Ibm Websphere Application Server 8.5.5.10
Ibm Websphere Application Server 9.0.0.4
Ibm Websphere Application Server 8.0.0.2
Ibm Websphere Application Server 8.0.0.0
Ibm Websphere Application Server 9.0.0.2
Ibm Websphere Application Server 8.0.0.13
Ibm Websphere Application Server 8.0.0.9
Ibm Websphere Application Server 8.0.0.10
Ibm Websphere Application Server 8.0.0.3
Ibm Websphere Application Server 8.0.0.6
NA
CVE-2009-0217
The design of the W3C XML Signature Syntax and Processing (XMLDsig) recommendation, as implemented in products including (1) the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and 10.1.4.3IM; (2) the WebLogic Server component in BEA Pro...
Mono Project Mono 1.2.4
Ibm Websphere Application Server 6.1.0.21
Mono Project Mono 1.2.1
Ibm Websphere Application Server 6.0.2.10
Ibm Websphere Application Server 6.1
Ibm Websphere Application Server 6.1.0.22
Ibm Websphere Application Server 6.1.0.19
Mono Project Mono 1.9
Ibm Websphere Application Server 6.0.2.1
Ibm Websphere Application Server 6.0.0.3
Ibm Websphere Application Server 6.1.0.2
Mono Project Mono 1.2.6
Ibm Websphere Application Server 6.0.1.15
Oracle Weblogic Server Component 8.1
Ibm Websphere Application Server 6.1.0.4
Oracle Application Server 10.1.3.4
Ibm Websphere Application Server 6.0.1.3
Ibm Websphere Application Server 6.0.2.20
Ibm Websphere Application Server 6.0.2.13
Ibm Websphere Application Server 6.1.0.11
Ibm Websphere Application Server 6.0.1.11
Ibm Websphere Application Server 7.0
6.7
CVSSv3
CVE-2018-1621
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local malicious user to obtain clear text password in a trace file caused by improper handling of some datasource custom properties. IBM X-Force ID: 144346.
Ibm Websphere Application Server 9.0.0.0
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.0.0.0
Ibm Websphere Application Server 7.0.0.0
6.5
CVSSv3
CVE-2018-1838
IBM WebSphere Application Server 8.5 and 9.0 in IBM Cloud could allow a remote malicious user to obtain sensitive information caused by improper handling of passwords. IBM X-Force ID: 150811.
Ibm Websphere Application Server
Ibm Websphere Application Server 9.0.0.0
Ibm Websphere Application Server 8.5.0.0
5.5
CVSSv3
CVE-2023-35890
IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security, caused by the improper encoding in a local configuration file. IBM X-Force ID: 258637.
Ibm Websphere Application Server 9.0.5.16
Ibm Websphere Application Server 9.0.5.15
Ibm Websphere Application Server 8.5.5.23
5.4
CVSSv3
CVE-2023-26283
IBM WebSphere Application Server 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Forc...
Ibm Websphere Application Server 9.0
3.5
CVSSv3
CVE-2019-4271
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Admin console is vulnerable to a Client-side HTTP parameter pollution vulnerability. IBM X-Force ID: 160243.
Ibm Websphere Application Server 7.0.0.0
Ibm Websphere Application Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »