EUVD-2019-14048

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM WebSphere Application Server versions could expose sensitive information via stack trace in browser.

Reporter	Title	Published	Views	Family All 82
IBM Security Bulletins	Security Bulletin: Information disclosure in WebSphere Application Server may affect IBM InfoSphere Identity Insight (CVE-2019-4441)	4 Feb 202019:54	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Rational ClearCase	8 Oct 201919:27	–	ibm
IBM Security Bulletins	Security Bulletin: Information disclosure in WebSphere Application Server affects MobileFirst Platform Foundation (CVE-2019-4441)	27 Feb 202006:29	–	ibm
IBM Security Bulletins	Security Bulletin: Information disclosure vulnerability in WebSphere Application Server shipped with Jazz for Service Management (CVE-2019-4441)	17 Apr 202009:35	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is shipped with, or a required product for, IBM Tivoli Network Manager (CVE-2019-4441).	19 Feb 202014:52	–	ibm
IBM Security Bulletins	Security Bulletin: Rational Asset Analyzer (RAA) is affected by a WebSphere Application Server vulnerability	31 Jan 202017:30	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in IBM WebSphere Application Server Liberty affect IBM Spectrum Protect Backup-Archive Client web user interface, IBM Spectrum Protect for Space Management, and IBM Spectrum Protect for Virtual Environments	18 Mar 202014:38	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in WebSphere Application Server affects IBM Rational products based on IBM Jazz technology	28 Apr 202118:35	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM Tivoli Monitoring embedded WebSphere Application and IHS server	20 Dec 201908:47	–	ibm
IBM Security Bulletins	Security Bulletin: A Security Vulnerability has been Identified in Websphere Application Server Shipped with Predictive Customer Intelligence (CVE-2019-4441)	11 Oct 201905:05	–	ibm

[
  {
    "enisaIdVendor": [
      {
        "id": "4ee11b49-2ae3-3e0d-af87-7f876943ab74",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "1fb7becc-937a-3a17-84a2-ece45859bcce",
        "product": {
          "name": "WebSphere Application Server"
        },
        "product_version": "9.0"
      },
      {
        "id": "28a2c683-5ac0-3c68-bd33-8ab6b5ee744b",
        "product": {
          "name": "WebSphere Application Server"
        },
        "product_version": "8.5"
      },
      {
        "id": "53d0e5a2-f2d9-3b1c-bfd9-ca6077d86bb8",
        "product": {
          "name": "WebSphere Application Server"
        },
        "product_version": "Liberty"
      },
      {
        "id": "6fb9db08-fd5a-39c1-bd53-2d48067ccf18",
        "product": {
          "name": "WebSphere Application Server"
        },
        "product_version": "7.0"
      },
      {
        "id": "c58e1f11-f5e9-3b56-ae54-0b1fa49059b4",
        "product": {
          "name": "WebSphere Application Server"
        },
        "product_version": "8.0"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/959023
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/163177
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

5.7Medium risk

Vulners AI Score5.7

CVSS 35.3

CVSS 25

CVSS 3.15.3

EPSS0.00362