EUVD-2020-25822

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM WebSphere Application Server and Virtual Enterprise are vulnerable to cross-site scripting attacks.

Reporter	Title	Published	Views	Family All 29
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Business Monitor (CVE-2020-4575)	28 Aug 202009:35	–	ibm
IBM Security Bulletins	Security Bulletin: A Security Vulnerability Has Been Identified In IBM WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On (CVE-2020-4575)	9 Sep 202003:13	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities in WebSphere Application Server affect Predictive Maintenance and Quality and Predictive Maintenance Insights	19 Oct 202015:09	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM OpenPages with Watson (CVE-2020-4575)	2 Oct 202015:26	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities are identified in WebSphere Application Server where Rational Asset Manager is deployed	25 Sep 202008:01	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Asset and Service Management (CVE-2020-4575)	17 Sep 202015:25	–	ibm
IBM Security Bulletins	Security Bulletin: WebSphere Application Server ND shipped with IBM WebSphere Application Server Patterns is vulnerable to cross-site scripting (CVE-2020-4575)	27 Aug 202016:26	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities have been identified in IBM WebSphere Application Server shipped with Tivoli Access Manager for e-business	7 Oct 202021:32	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM WebSphere Appilcation Server and WebSphere Application Server Liberty affects IBM Engineering ELM products based on IBM Jazz technology.	12 Nov 202015:45	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilty have been identified in IBM WebSphere Application Server shipped with IBM Security Identity Manager(CVE-2020-4575)	31 Aug 202020:30	–	ibm

[
  {
    "enisaIdVendor": [
      {
        "id": "215669c0-2abe-3af7-9ebb-07db3bf9ac4c",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "11ad6dec-1ef8-3df3-8cbf-8c83e3bb87b5",
        "product": {
          "name": "WebSphere Application Server ND"
        },
        "product_version": "8.5"
      },
      {
        "id": "5a4034d3-9868-3e0f-a1c7-db6fefdadf1f",
        "product": {
          "name": "WebSphere Application Server ND"
        },
        "product_version": "9.0"
      },
      {
        "id": "857d192a-f3c0-31b3-bf42-e423cd760b8c",
        "product": {
          "name": "WebSphere Virtual Enterprise"
        },
        "product_version": "8.0"
      },
      {
        "id": "cc765958-750f-36e1-a18b-26fd95321c5c",
        "product": {
          "name": "WebSphere Virtual Enterprise"
        },
        "product_version": "7.0"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6323293
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/184363
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

5Medium risk

Vulners AI Score5

CVSS 34.7

CVSS 24.3

CVSS 3.16.1

EPSS0.00131