Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

EUVD-2021-25468

šŸ—“ļøĀ 07 Oct 2025Ā 00:30:54Reported byĀ EUVDTypeĀ 
euvd
Ā euvdšŸ”—Ā euvd.enisa.europa.eu

IBM WebSphere Liberty versions 17.0.0.3 to 22.0.0.1 vulnerable to LDAP injection attack.

Related
Affected
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server Liberty shipped with IBM Digital Business Automation Workflow family products
14 Sep 202215:28
ā€“ibm
IBM Security Bulletins		Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - IBM WebSphere Application Server (CVE-2021-39031)
22 Apr 202221:01
ā€“ibm
IBM Security Bulletins		Security Bulletin: IBM Cognos Controller has addressed multiple vulnerabilities
2 Dec 202219:43
ā€“ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities exist in Watson Explorer for IBM WebSphere Application Server - Liberty (CVE-2021-39031)
22 Apr 202214:21
ā€“ibm
IBM Security Bulletins		Security Bulletin: A vulnerability in IBM WebSphere Application Server Liberty affects IBM Spectrum Scale packaged in IBM ESS ( CVE-2021-39031)
23 May 202213:02
ā€“ibm
IBM Security Bulletins		Security Bulletin: IBMĀ® Engineering Requirements Management DOORS/DWA - Vulnerabilities addressed in IBMĀ® License Key Server
16 Oct 202407:14
ā€“ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities have been identified in IBM WebSphere Application Liberty profile shipped with IBM Robotic Process Automation
18 Jul 202221:58
ā€“ibm
IBM Security Bulletins		Security Bulletin: A Vulnerability in IBM WebSphere Application Server - Liberty affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data
12 Jan 202321:59
ā€“ibm
IBM Security Bulletins		Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for April 2022
29 Apr 202210:04
ā€“ibm
IBM Security Bulletins		Security Bulletin: IBM Performance Management is affected by multiple vulnerabilities in IBM Websphere Application Server (CVE-2021-39031, CVE-2022-22393, and CVE-2022-22476)
13 Oct 202213:51
ā€“ibm
Rows per page
[
  {
    "enisaIdVendor": [
      {
        "id": "5441caf0-11d7-31ed-a70d-5db47be655f7",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "e01bf8ae-3c66-3aa4-a8da-ace62951de14",
        "product": {
          "name": "WebSphere Application Server Liberty"
        },
        "product_version": "22.0.0.1"
      },
      {
        "id": "e60ca526-26e9-3eca-8ae1-0bf2b9a97dbd",
        "product": {
          "name": "WebSphere Application Server Liberty"
        },
        "product_version": "17.0.0.3"
      }
    ]
  }
]

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
07 Oct 2025 00:30Current
7.6High risk
Vulners AI Score7.6
CVSS 37.5
CVSS 26.5
CVSS 3.18.8
EPSS0.00249
ibm websphere application serverldap injectionremote authenticated attackerunauthorized access
0