Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere application server 9.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-4449
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional could allow a remote malicious user to obtain sensitive information with a specially-crafted sequence of serialized objects. IBM X-Force ID: 181230.
Ibm Websphere Application Server
7.5
CVSSv3
CVE-2020-4276
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional is vulnerable to a privilege escalation vulnerability when using token-based authentication in an admin request over the SOAP connector. X-Force ID: 175984.
Ibm Websphere Application Server
1 Github repository
7.5
CVSSv3
CVE-2019-4720
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume all available memory. IBM X-Force ID: 172125.
Ibm Websphere Application Server
7.5
CVSSv3
CVE-2019-4269
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Admin Console could allow a remote malicious user to obtain sensitive information when a specially crafted url causes a stack trace to be dumped. IBM X-Force ID: 160202.
Ibm Websphere Application Server
7.5
CVSSv3
CVE-2019-4046
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service, caused by improper handling of request headers. A remote attacker could exploit this vulnerability to cause the consumption of Memory. IBM X-Force ID: 156242.
Ibm Websphere Application Server
7.5
CVSSv3
CVE-2018-1614
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using malformed SAML responses from the SAML identity provider could allow a remote malicious user to obtain sensitive information. IBM X-Force ID: 144270.
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 8.5
Ibm Websphere Application Server 9.0
7.5
CVSSv3
CVE-2016-8919
IBM WebSphere Application Server may be vulnerable to a denial of service, caused by allowing serialized objects from untrusted sources to run and cause the consumption of resources.
Ibm Websphere Application Server 9.0
Ibm Websphere Application Server 8.5.5
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 7.0
7.5
CVSSv3
CVE-2016-5983
IBM WebSphere Application Server (WAS) 7.0 prior to 7.0.0.43, 8.0 prior to 8.0.0.13, 8.5 prior to 8.5.5.11, 9.0 prior to 9.0.0.2, and Liberty prior to 16.0.0.4 allows remote authenticated users to execute arbitrary Java code via a crafted serialized object.
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.5.5.9
Ibm Websphere Application Server 8.0.0.9
Ibm Websphere Application Server 8.0.0.8
Ibm Websphere Application Server 8.0.0.11
Ibm Websphere Application Server 8.0.0.10
Ibm Websphere Application Server 7.0.0.7
Ibm Websphere Application Server 7.0.0.6
Ibm Websphere Application Server 7.0.0.35
Ibm Websphere Application Server 7.0.0.34
Ibm Websphere Application Server 7.0.0.25
Ibm Websphere Application Server 7.0.0.24
Ibm Websphere Application Server 7.0.0.17
Ibm Websphere Application Server 7.0.0.16
Ibm Websphere Application Server 7.0.0.1
Ibm Websphere Application Server 7.0.0.0
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 8.5.5.2
Ibm Websphere Application Server 8.5.5.4
Ibm Websphere Application Server 8.0.0.3
Ibm Websphere Application Server 8.0.0.2
Ibm Websphere Application Server 8.0.0.12
1 Github repository
7.5
CVSSv3
CVE-2016-5986
IBM WebSphere Application Server (WAS) 7.x prior to 7.0.0.43, 8.0.x prior to 8.0.0.13, 8.5.x prior to 8.5.5.11, 9.0.x prior to 9.0.0.2, and Liberty prior to 16.0.0.3 mishandles responses, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 8.5.5.0
Ibm Websphere Application Server 8.5.5.5
Ibm Websphere Application Server 8.5.5.4
Ibm Websphere Application Server 8.0.0.4
Ibm Websphere Application Server 8.0.0.3
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 7.0.0.39
Ibm Websphere Application Server 7.0.0.38
Ibm Websphere Application Server 7.0.0.37
Ibm Websphere Application Server 7.0.0.3
Ibm Websphere Application Server 7.0.0.29
Ibm Websphere Application Server 7.0.0.21
Ibm Websphere Application Server 7.0.0.2
Ibm Websphere Application Server 7.0.0.12
Ibm Websphere Application Server 7.0.0.11
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 8.5.5.2
Ibm Websphere Application Server 8.5.0.0
Ibm Websphere Application Server 8.0.0.9
Ibm Websphere Application Server 8.0.0.2
Ibm Websphere Application Server 8.0.0.12
7.2
CVSSv3
CVE-2020-4163
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0, under specialized conditions, could allow an authenticated user to create a maliciously crafted file name which would be misinterpreted as jsp content and executed. IBM X-Force ID: 174397.
Ibm Websphere Application Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »