Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2021-20453

🗓️ 20 Apr 2021 12:12:15Reported by ibmType 
cve
 cve🔗 web.nvd.nist.gov👁 60 Views🌐 2 Media mentions

IBM WebSphere App Server 8.0/8.5/9.0 XXE vulnerabilit

Show more
Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
Cvelist		CVE-2021-20453
20 Apr 202111:35
cvelist
IBM Security Bulletins		Security Bulletin: Embedded WebSphere Application Server is vulnerable to an XML External Entity (XXE) Injection attack and affects Content Collector for Email
1 Jun 202117:17
ibm
IBM Security Bulletins		Security Bulletin: A security vulnerability has been identified in embedded IBM WebSphere Application Server which is shipped with IBM Tivoli Netcool Configuration Manager (CVE-2021-20453)
28 Jun 202110:59
ibm
IBM Security Bulletins		Security Bulletin: WebSphere Application Server Traditional, which is bundled with IBM Cloud Pak for Applications, is vulnerable to an XML External Entity (XXE) Injection vulnerability (CVE-2021-20453)
28 Apr 202120:54
ibm
IBM Security Bulletins		Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server used by IBM Rational ClearQuest (CVE-2021-20453)
29 Sep 202112:28
ibm
IBM Security Bulletins		Security Bulletin: Security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Security Directory Server (CVE-2021-20453)
20 Jul 202121:16
ibm
IBM Security Bulletins		Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with IBM Intelligent Operations Center (CVE-2021-20453)
20 Apr 202108:05
ibm
IBM Security Bulletins		Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Tivoli Business Service Manager (CVE-2021-20453)
15 Jun 202116:06
ibm
IBM Security Bulletins		Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is a required product for IBM Tivoli Network Manager IP Edition (CVE-2021-20453)
28 Jun 202111:02
ibm
IBM Security Bulletins		Security Bulletin: A Security Vulnerability has been identified in WebSphere Application Server is vulnerable to an XML External Entity (XXE) Injection vulnerability (CVE-2021-20453)
20 Apr 202111:22
ibm
Rows per page
Nvd
Vulners
Node
ibmwebsphere_application_serverRange8.0.0.08.0.0.15
OR
ibmwebsphere_application_serverRange8.5.0.08.5.5.20
OR
ibmwebsphere_application_serverRange9.0.0.09.0.5.8
[
  {
    "product": "WebSphere Application Server",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "8.0"
      },
      {
        "status": "affected",
        "version": "8.5"
      },
      {
        "status": "affected",
        "version": "9.0"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
20 Apr 2021 12:15Current
7.9High risk
Vulners AI Score7.9
CVSS26.4
CVSS38.2
EPSS0.001
CWE-611
ibmwebsphereapplication server8.08.59.0xxexmlinjectionsecurityvulnerabilitynvdcve-2021-20453
60
.json
Report