Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

IBM WebSphere Application Server Liberty 21.0.0.2 < 25.0.0.2 DoS (7181925)

🗓️ 01 Feb 2025 00:00:00Reported by TenableType 
nessus
 nessus🔗 www.tenable.com👁 13 Views

IBM WebSphere Liberty versions below 25.0.0.2 have a DoS vulnerability affecting Netty functionality.

Related
Refs
Code
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: IBM Sterling Connect:Direct Web Services is affected by vulneralibity in netty-common-4.1.114.Final.jar
16 Apr 202505:42
ibm
IBM Security Bulletins		Security Bulletin: IBM WebSphere Application Server Liberty is vulnerable to a denial of service due to Netty (CVE-2024-47535)
29 Jan 202515:35
ibm
IBM Security Bulletins		Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Netty Common
24 Jan 202517:15
ibm
IBM Security Bulletins		Security Bulletin: security vulnerabilities are addressed with IBM Business Automation Insights iFixes for July 2025.
7 Aug 202508:58
ibm
IBM Security Bulletins		Security Bulletin: IBM Data Product Hub is affected by several vulnerabilities
26 Mar 202522:25
ibm
IBM Security Bulletins		Security Bulletin: Multiple Vulnerabilities in IBM API Connect
15 Mar 202500:18
ibm
IBM Security Bulletins		Security Bulletin: IBM SPSS Modeler is affected by vulnerabilities in Netty
16 Jun 202616:26
ibm
IBM Security Bulletins		Security Bulletin: IBM Guardium Data Security Center is affected by multiple vulnerabilities
19 Jun 202505:35
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in IBM® Db2® affect IBM® Db2® Big SQL
23 Jan 202610:25
ibm
IBM Security Bulletins		Security Bulletin: IBM Asset Data Dictionary uses multiple third party dependencies which is vulnerable to CVEs.
6 Feb 202505:30
ibm
Rows per page
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(214871);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/09/08");

  script_cve_id("CVE-2024-47535");

  script_name(english:"IBM WebSphere Application Server Liberty 21.0.0.2 < 25.0.0.2 DoS (7181925)");

  script_set_attribute(attribute:"synopsis", value:
"The remote web application server is affected by a DoS vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of IBM WebSphere Application Server Liberty running on the remote host is affected by a DoS vulnerability as
referenced in the 7181925 advisory.

  - Netty is an asynchronous event-driven network application framework for rapid development of maintainable
    high performance protocol servers & clients. An unsafe reading of environment file could potentially cause
    a denial of service in Netty. When loaded on an Windows application, Netty attempts to load a file that
    does not exist. If an attacker creates such a large file, the Netty application crashes. This
    vulnerability is fixed in 4.1.115. (CVE-2024-47535)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.ibm.com/support/pages/node/7181925");
  script_set_attribute(attribute:"solution", value:
"Update to IBM WebSphere Application Server Liberty version 25.0.0.2 or later. Alternatively, upgrade to the minimal fix
pack levels required by the interim fix and then apply Interim Fix PH64741.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-47535");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/11/12");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/01/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/02/01");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:websphere_application_server");
  script_set_attribute(attribute:"generated_plugin", value:"former");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Web Servers");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("websphere_liberty_detect.nbin", "ibm_websphere_application_server_liberty_nix_installed.nbin");
  script_require_keys("installed_sw/IBM WebSphere Application Server");

  exit(0);
}

include('vcf.inc');

var app = 'IBM WebSphere Application Server';
var app_info = vcf::combined_get_app_info(app:app);
vcf::check_granularity(app_info:app_info, sig_segments:4);

if (app_info['Product'] != app + ' Liberty')
  audit(AUDIT_HOST_NOT, app + ' Liberty');

# If the detection is only remote, Source will be set, and we should require paranoia
var require_paranoid = FALSE;
if (!empty_or_null(app_info['Source']) && app_info['Source'] != 'unknown' && report_paranoia < 2)
  require_paranoid = TRUE;

if ('PH64741' >< app_info['Fixes'])
  audit(AUDIT_INST_VER_NOT_VULN, app);

var constraints = [
  { 'min_version' : '21.0.0.2', 'fixed_version' : '25.0.0.2', 'fixed_display' : '25.0.0.2 or Interim Fix PH64741' }
];

vcf::check_version_and_report(
    app_info:app_info,
    constraints:constraints,
    require_paranoia:require_paranoid,
    severity:SECURITY_WARNING
);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
08 Sep 2025 00:00Current
6.8Medium risk
Vulners AI Score6.8
CVSS 3.15.5
EPSS0.00408
SSVC
ibm websphere application serverdenial of servicenetty vulnerabilitycve-2024-47535version advisory
13