Lucene search

PRIOn knowledge basePRION:CVE-2009-1899

HistoryJun 03, 2009 - 5:00 p.m.

Code injection

2009-06-0317:00:00

PRIOn knowledge base

www.prio-n.com

5.7 Medium

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.6%

JSON

Unspecified vulnerability in the Administrative Configservice API in the System Management/Repository component in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.35, 6.1 before 6.1.0.25, and 7.0 before 7.0.0.5 on z/OS allows remote authenticated users to obtain sensitive information via unknown use of the wsadmin scripting tool, related to a “security exposure in wsadmin.”

CPENameOperatorVersion
websphere_application_servereq6.0.2.10
websphere_application_servereq6.0.2.1
websphere_application_servereq6.0.2.5
websphere_application_servereq6.0.2.20
websphere_application_servereq6.0.2.13
websphere_application_servereq6.0.2.9
websphere_application_servereq6.0.2.28
websphere_application_servereq6.0.2.11
websphere_application_servereq6.0.2.6
websphere_application_servereq6.0.2.2

Name	Operator	Version
websphere_application_server	eq	6.0.2.10
websphere_application_server	eq	6.0.2.1
websphere_application_server	eq	6.0.2.5
websphere_application_server	eq	6.0.2.20
websphere_application_server	eq	6.0.2.13
websphere_application_server	eq	6.0.2.9
websphere_application_server	eq	6.0.2.28
websphere_application_server	eq	6.0.2.11
websphere_application_server	eq	6.0.2.6
websphere_application_server	eq	6.0.2.2

Rows per page:

1-10 of 331

References

secunia.com/advisories/35301

www-01.ibm.com/support/docview.wss?uid=swg27006876

www-01.ibm.com/support/docview.wss?uid=swg27007951

www-01.ibm.com/support/docview.wss?uid=swg27014463

www-1.ibm.com/support/docview.wss?uid=swg1PK77495

www.securityfocus.com/bid/35405

www.vupen.com/english/advisories/2009/1464

exchange.xforce.ibmcloud.com/vulnerabilities/51172

exchange.xforce.ibmcloud.com/vulnerabilities/52075