5 matches found
IBM WebSphere Application Server 8.0.0.x < 8.0.0.10 Multiple Vulnerabilities
Binary data 700045.prm...
IBM WebSphere Application Server 7.0.0.x < 7.0.0.35 Multiple Vulnerabilities
Binary data 700044.prm...
IBM WebSphere Application Server 8.5.5.x < 8.5.5.4 Multiple Vulnerabilities
Binary data 700046.prm...
CVE-2014-6166
CVE-2014-6166 affects IBM WebSphere Application Server: CEA service XXE vulnerability that could expose sensitive data when processing XML. Affected: WebSphere Application Server 8.0.x before 8.0.0.10 and 8.5.x before 8.5.5.4; Feature Pack for CEA 1.x before 1.0.0.15. Root cause is XML External E...
CVE-2014-6166
The Communications Enabled Applications CEA service in IBM WebSphere Application Server 8.0.x before 8.0.0.10 and 8.5.x before 8.5.5.4, and Feature Pack for CEA 1.x before 1.0.0.15, allows remote attackers to read arbitrary files via an XML external entity declaration in conjunction with an entit...