Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere application server 8.0 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2017-1731
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could provide weaker than expected security when using the Administrative Console. An authenticated remote attacker could exploit this vulnerability to possibly gain elevated privileges.
Ibm Websphere Application Server
6.5
CVSSv2
CVE-2016-5983
IBM WebSphere Application Server (WAS) 7.0 prior to 7.0.0.43, 8.0 prior to 8.0.0.13, 8.5 prior to 8.5.5.11, 9.0 prior to 9.0.0.2, and Liberty prior to 16.0.0.4 allows remote authenticated users to execute arbitrary Java code via a crafted serialized object.
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.5.5.9
Ibm Websphere Application Server 8.0.0.9
Ibm Websphere Application Server 8.0.0.8
Ibm Websphere Application Server 8.0.0.11
Ibm Websphere Application Server 8.0.0.10
Ibm Websphere Application Server 7.0.0.7
Ibm Websphere Application Server 7.0.0.6
Ibm Websphere Application Server 7.0.0.35
Ibm Websphere Application Server 7.0.0.34
Ibm Websphere Application Server 7.0.0.25
Ibm Websphere Application Server 7.0.0.24
Ibm Websphere Application Server 7.0.0.17
Ibm Websphere Application Server 7.0.0.16
Ibm Websphere Application Server 7.0.0.1
Ibm Websphere Application Server 7.0.0.0
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 8.5.5.2
Ibm Websphere Application Server 8.5.5.4
Ibm Websphere Application Server 8.0.0.3
Ibm Websphere Application Server 8.0.0.2
Ibm Websphere Application Server 8.0.0.12
1 Github repository
6.4
CVSSv2
CVE-2021-20492
IBM WebSphere Application Server 8.0, 8.5, 9.0, and Liberty Java Batch is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Fo...
Ibm Websphere Application Server
6.4
CVSSv2
CVE-2021-20454
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 196649.
6.4
CVSSv2
CVE-2021-20453
IBM WebSphere Application Server 8.0, 8.5, and 9.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 196648.
Ibm Websphere Application Server
6.4
CVSSv2
CVE-2021-20353
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 194882.
Ibm Websphere Application Server
6.4
CVSSv2
CVE-2020-4949
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 192025.
Ibm Websphere Application Server
6.4
CVSSv2
CVE-2012-3305
Directory traversal vulnerability in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.47, 7.0 prior to 7.0.0.25, 8.0 prior to 8.0.0.5, and 8.5 prior to 8.5.0.1 allows remote malicious users to overwrite arbitrary files via a crafted application file.
Ibm Websphere Application Server 6.1.0
Ibm Websphere Application Server 6.1.0.0
Ibm Websphere Application Server 6.1.0.15
Ibm Websphere Application Server 6.1.0.16
Ibm Websphere Application Server 6.1.0.22
Ibm Websphere Application Server 6.1.0.23
Ibm Websphere Application Server 6.1.0.24
Ibm Websphere Application Server 6.1.0.31
Ibm Websphere Application Server 6.1.0.32
Ibm Websphere Application Server 6.1.0.39
Ibm Websphere Application Server 6.1.0.4
Ibm Websphere Application Server 6.1.0.1
Ibm Websphere Application Server 6.1.0.10
Ibm Websphere Application Server 6.1.0.17
Ibm Websphere Application Server 6.1.0.18
Ibm Websphere Application Server 6.1.0.25
Ibm Websphere Application Server 6.1.0.26
Ibm Websphere Application Server 6.1.0.33
Ibm Websphere Application Server 6.1.0.34
Ibm Websphere Application Server 6.1.0.41
Ibm Websphere Application Server 6.1.0.42
Ibm Websphere Application Server 6.1.0.11
6
CVSSv2
CVE-2020-4276
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional is vulnerable to a privilege escalation vulnerability when using token-based authentication in an admin request over the SOAP connector. X-Force ID: 175984.
Ibm Websphere Application Server
1 Github repository
6
CVSSv2
CVE-2020-4163
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0, under specialized conditions, could allow an authenticated user to create a maliciously crafted file name which would be misinterpreted as jsp content and executed. IBM X-Force ID: 174397.
Ibm Websphere Application Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »