Lucene search
K

5083 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/06/03 6:36 a.m.6 views

Security Bulletin: IBM WebSphere Application Server shipped with Jazz for Service Management (JazzSM) is affected by remote code execution

Summary IBM WebSphere Application Server shipped with Jazz for Service Management JazzSM is affected by remote code execution CVE-2026-9311, CVE-2026-9330 Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products...

9CVSS6.4AI score0.00489EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/03 6:35 a.m.9 views

Security Bulletin: IBM WebSphere Application Server shipped with Jazz for Service Management (JazzSM) is affected by an identity spoofing vulnerability

Summary IBM WebSphere Application Server shipped with Jazz for Service Management JazzSM is affected by an identity spoofing vulnerability CVE-2026-8644 Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products|...

9.1CVSS5.8AI score0.00318EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/02 2:36 p.m.12 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM WebSphere Remote Server (CVE-2026-8644)

Summary IBM WebSphere Application Server is shipped with IBM WebSphere Remote Server. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

9.1CVSS5.8AI score0.00318EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/02 12:0 a.m.15 views

IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.29 Identity Spoofing (7274740)

The version of IBM WebSphere Application Server running on the remote host is affected by an identity spoofing vulnerability as referenced in the 7274740 advisory. - IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to identity spoofing. CVE-2026-8644 Note that Nessus has not tested for...

9.1CVSS5.9AI score0.00318EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/01 6:1 p.m.10 views

CVE-2026-9330 IBM WebSphere Application Server is affected by remote code execution

IBM WebSphere Application Server 9.0, and 8.5 is affected by an improper validation of user-supplied data during deserialization using the SAML Web Single Sign-On component. This could result in remote code execution via a crafted HTTP request when combined with a suitable gadget chain...

8.5CVSS6.5AI score0.00469EPSS
Exploits0References1
CVE
CVE
added 2026/06/01 6:1 p.m.64 views

CVE-2026-9330

IBM WebSphere Application Server 9.0 and 8.5 are affected by CVE-2026-9330 due to improper validation of user-supplied data during deserialization in the SAML Web Single Sign-On component, potentially enabling remote code execution via a crafted HTTP request with a gadget chain. Affected products...

8.5CVSS6.5AI score0.00469EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/06/01 5:59 p.m.77 views

CVE-2026-9319

IBM WebSphere Application Server 9.0 and 8.5 are affected by a remote code execution vulnerability caused by deserialization of untrusted data via JAX-WS endpoints with WS-Security (CVE-2026-9319; CVSS v3.1 base score 9.0). This affects WebSphere AS 9.0 and 8.5. Remediation: apply the interim fix...

9CVSS6.5AI score0.00441EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/06/01 5:59 p.m.11 views

EUVD-2026-33737

IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to potential remote code execution due to deserialization of untrusted data via JAX-WS endpoints with WS-Security...

9CVSS6.5AI score0.00441EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/01 5:49 p.m.28 views

CVE-2026-9311 IBM WebSphere Application Server is affected by remote code execution

IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to remote code execution caused by the bypass of security controls...

9CVSS0.00489EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/01 5:49 p.m.13 views

EUVD-2026-33735

IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to remote code execution caused by the bypass of security controls...

9CVSS6.4AI score0.00489EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/01 5:49 p.m.12 views

CVE-2026-9311

IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to remote code execution caused by the bypass of security controls...

9CVSS6.4AI score0.00489EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/01 5:46 p.m.82 views

CVE-2026-8644

IBM WebSphere Application Server versions 9.0 and 8.5 are affected by CVE-2026-8644, an identity spoofing (authentication bypass) vulnerability (CWE-290) with CVSSv3.1 base score 9.1. Affected products: WebSphere Application Server 9.0 and 8.5. Root cause: identity spoofing leading to authenticat...

9.1CVSS5.8AI score0.00318EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/01 5:46 p.m.29 views

CVE-2026-8644 IBM WebSphere Application Server is affected by an identity spoofing vulnerability

IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to identity spoofing...

9.1CVSS0.00318EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/01 5:46 p.m.7 views

CVE-2026-8644

IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to identity spoofing...

9.1CVSS5.8AI score0.00318EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/06/01 5:46 p.m.15 views

EUVD-2026-33732

IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to identity spoofing...

9.1CVSS5.8AI score0.00318EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.9 views

IBM WebSphere Application Server(WAS) 安全漏洞

IBM WebSphere Application Server is a Java enterprise application server developed by IBM. It is primarily used for deploying and managing enterprise-level web applications. IBM WebSphere Application Server has a vulnerability known as “Identity Spoofing.” This vulnerability arises from the failu...

9.1CVSS5.8AI score0.00318EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.18 views

PT-2026-45542

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server version 9.0 IBM WebSphere Application Server version 8.5 Description An issue exists that allows for identity spoofing, where an attacker can impersonate another user or system identity. Recommendations At the...

9.1CVSS5.8AI score0.00318EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.7 views

IBM WebSphere Application Server 代码问题漏洞

IBM WebSphere Application Server is an application server product developed by IBM. It serves as a platform for JavaEE and web services applications and forms the foundation of the IBM WebSphere software suite. Versions 9.0 and 8.5 of IBM WebSphere Application Server contained code vulnerabilitie...

9CVSS5.9AI score0.00441EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.10 views

IBM WebSphere Application Server(WAS) 代码注入漏洞

IBM WebSphere Application Server is an enterprise-level Java application server, primarily used for deploying and running Java enterprise applications. IBM WebSphere Application Server has a security control bypass vulnerability. This vulnerability stems from the improper implementation of securi...

9CVSS6AI score0.00489EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.15 views

PT-2026-45543

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server version 8.5 IBM WebSphere Application Server version 9.0 Description Remote code execution is possible due to the bypass of security controls. Recommendations At the moment, there is no information about a newe...

9CVSS6.3AI score0.00489EPSS
Exploits0References6
Rows per page
Query Builder