EUVD-2020-25822

Malware in sbrugna...

Security Bulletin: Potential Security Vulnerability fixed in WebSphere Virtual Enterprise (CVE-2013-5425)

Abstract Potential Security vulnerability fixed in WebSphere Virtual Enterprise Content VULNERABILITY DETAILS: CVE ID:CVE-2013-5425PM93828 DESCRIPTION: IBM WebSphere Virtual Enterprise may be vulnerable to cross-site scripting in the Administration Console caused by improper validation of...

CVE-2020-4575

IBM WebSphere Application Server ND 8.5 and 9.0, and IBM WebSphere Virtual Enterprise 7.0 and 8.0 are vulnerable to cross-site scripting when High Availability Deployment Manager is configured...

Security Bulletin: Remote code execution in WebSphere Application Server ND (CVE-2019-4279)

Summary There is a remote code execution vulnerability in WebSphere Application Server Network Deployment. Vulnerability Details CVEID: CVE-2019-4279 DESCRIPTION: IBM WebSphere Application Server ND could allow a remote attacker to execute arbitrary code on the system with a specially-crafted...

The vulnerability of the WebSphere Application Server software allows a malicious intruder to compromise the integrity of protected information.

Cross-site scripting XSS in the IBM WebSphere Application Server WAS and WebSphere Virtual Enterprise administration console allows authorized users to inject any web script or HTML code by using a specially crafted URL address...

IBM WebSphere Application Server and WebSphere Virtual Enterprise Information Disclosure Vulnerability

IBM WebSphere Application Server WAS and WebSphere Virtual Enterprise WVE are both products of IBM Corporation, U.S.A. WAS is an application server product; WVE is a set of application server virtualization solutions. There are security vulnerabilities in IBM WAS and WVE. A remote attacker could...

IBM WebSphere Application Server and WebSphere Virtual Enterprise Local Privilege Vulnerability

IBM WebSphere Application Server WAS and WebSphere Virtual Enterprise WVE are both products of IBM Corporation, U.S.A. WAS is an application server product; WVE is a set of application server virtualization solutions. The IBM WebSphere Application Server and WebSphere Virtual Enterprise local...

Cross site scripting

Cross-site scripting XSS vulnerability in the Administration Console in IBM WebSphere Virtual Enterprise 6.1 before 6.1.1.6 and 7.0 before 7.0.0.4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

CVE-2013-5425

IBM WebSphere Virtual Enterprise CVE-2013-5425 is an XSS vulnerability in the Administration Console exploitable by remote authenticated users via a crafted URL. Affected versions: VE 6.1 prior to 6.1.1.6 and VE 7.0 prior to 7.0.0.4. Mitigation: apply theFix Pack/Interim Fix PM93828. For VE 7.0, ...

IBM WebSphere Application Server vulnerable to denial-of-service (DoS)

Overview IBM WebSphere Application Server WAS contains a denial-of-service DoS vulnerability. IBM WebSphere Application Server contains a denial-of-service DoS vulnerability due to an issue in Java Runtime Environment JRE. According to the developer: " For other IBM software products that contain...

JVN#26301278: IBM WebSphere Application Server vulnerable to denial-of-service (DoS)

IBM WebSphere Application Server contains a denial-of-service DoS vulnerability due to an issue in Java Runtime Environment JRE. Impact A remote attacker may cause a denial-of-service DoS. Solution Apply a patch Apply the appropriate patch according to the information provided by the developer...