Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
websphere application server vulnerabilities and exploits
(subscribe to this query)
8.2
CVSSv3
CVE-2020-4949
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 192025.
Ibm Websphere Application Server
8.1
CVSSv3
CVE-2018-1840
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote malicious user to gain elevated privileges on the system, caused when a security domain is configured to use a federated repository other than global federated repository and then migrated to a newer release of Web...
Ibm Websphere Application Server
8.1
CVSSv3
CVE-2017-1137
IBM WebSphere Application Server 8.0 and 8.5.5 could provide weaker than expected security. A remote attacker could exploit this weakness to obtain sensitive information and gain unauthorized access to the admin console. IBM X-Force ID: 121549.
Ibm Websphere Application Server 8.5
Ibm Websphere Application Server 8.5.5
Ibm Websphere Application Server 8.0
8.1
CVSSv3
CVE-2017-1151
IBM WebSphere Application Server 8.0, 8.5, 8.5.5, and 9.0 using OpenID Connect (OIDC) configured with a Trust Association Interceptor (TAI) could allow a user to gain elevated privileges on the system. IBM Reference #: 1999293.
Ibm Websphere Application Server 8.5.5
Ibm Websphere Application Server 9.0
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 8.5
7.8
CVSSv3
CVE-2023-3440
Incorrect Default Permissions vulnerability in Hitachi JP1/Performance Management on Windows allows File Manipulation.This issue affects JP1/Performance Management - Manager: from 09-00 prior to 12-50-07; JP1/Performance Management - Base: from 09-00 through 10-50-*; JP1/Performa...
Hitachi Jp1\\/performance Management -
7.8
CVSSv3
CVE-2013-3024
IBM WebSphere Application Server (WAS) 8.5 up to and including 8.5.0.2 on UNIX allows local users to gain privileges by leveraging improper process initialization. IBM X-Force ID: 84362.
Ibm Websphere Application Server
7.5
CVSSv3
CVE-2024-22353
IBM WebSphere Application Server Liberty 17.0.0.3 up to and including 24.0.0.3 is vulnerable to a denial of service, caused by sending a specially crafted request. A remote attacker could exploit this vulnerability to cause the server to consume memory resources. IBM X-Force ID: ...
Ibm Websphere Application Server
7.5
CVSSv3
CVE-2023-38737
IBM WebSphere Application Server Liberty 22.0.0.13 up to and including 23.0.0.7 is vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume memory resources. IBM X-Force ID:...
Ibm Websphere Application Server
7.5
CVSSv3
CVE-2023-30441
IBM Runtime Environment, Java Technology Edition IBMJCEPlus and JSSE 8.0.7.0 up to and including 8.0.7.11 components could expose sensitive information using a combination of flaws and configurations. IBM X-Force ID: 253188.
Ibm Infosphere Information Server 11.7
Ibm Websphere Application Server -
Ibm Z\\/transaction Processing Facility 1.1
Ibm Websphere Application Server
Ibm Websphere Application Server 9.0.0.0
Ibm Java
7.5
CVSSv3
CVE-2023-26281
IBM HTTP Server 8.5 used by IBM WebSphere Application Server could allow a remote user to cause a denial of service using a specially crafted URL. IBM X-Force ID: 248296.
Ibm Http Server 8.5.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »