IBM WebSphere Application Server 5.0.2 and previous versions, 5.1.1 and previous versions, and 6.0.2 up to 6.0.2.7 records user credentials in plaintext in addNode.log, which allows malicious users to gain privileges.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
ibm websphere application server 6.0.2 |
||
ibm websphere application server 6.0.2.1 |
||
ibm websphere application server 5.0.0 |
||
ibm websphere application server 6.0.2.2 |
||
ibm websphere application server 6.0.2.3 |
||
ibm websphere application server 5.1.0 |
||
ibm websphere application server 5.1.1 |
||
ibm websphere application server 6.0.2.7 |
||
ibm websphere application server 5.0.1 |
||
ibm websphere application server 5.0.2 |
||
ibm websphere application server 6.0.2.4 |
||
ibm websphere application server 6.0.2.5 |
||
ibm websphere application server 6.0.2.6 |
Vulmon