CVE-2024-22329 IBM WebSphere Application Server server-side request forgery

2024-04-1701:21:46

CWE-918

ibm

raw.githubusercontent.com

ibm websphere

ssrf

vulnerability

versions

8.5

9.0

liberty

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

8.4%

JSON

IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.3 are vulnerable to server-side request forgery (SSRF). By sending a specially crafted request, an attacker could exploit this vulnerability to conduct the SSRF attack. X-Force ID: 279951.