2 matches found
CVE-2020-4163
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0, under specialized conditions, could allow an authenticated user to create a maliciously crafted file name which would be misinterpreted as jsp content and executed. IBM X-Force ID: 174397...
CVE-2020-4163
CVE-2020-4163 affects IBM WebSphere Application Server 7.0, 8.0, 8.5 and 9.0. Under certain conditions, an authenticated user could craft a file name that is misinterpreted as JSP content and executed, enabling unauthorized actions. IBM sources unify this as a command/execution risk with IBM X-Fo...