Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

IBM Security Bulletins
IBM Security Bulletinsadded 2021/09/23 1:31 a.m.27 views

Security Bulletin: Vulnerability in IBM WebSphere Application Server affects Power Hardware Management Console (CVE-2016-2923)

Summary IBM WebSphere Application Server WAS is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs Vulnerability Details CVEID: CVE-2016-2923 DESCRIPTION: IBM WebSphere Application Server Liberty using JAX-RS API could allow a remote attacker to obtain sensitive...

7.5CVSS7.3AI score0.02348EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2019/12/18 2:26 p.m.23 views

Security Bulletin: IBM i Integrated Web Application Server version 8.5 is affected by vulnerabilities CVE-2016-0359 and CVE-2016-2923.

Summary IBM i Integrated Web Application Server version 8.5 is affected by the following vulnerabilities CVE-2016-0359 and CVE-2016-2923. Vulnerability Details CVEID: CVE-2016-0359 DESCRIPTION: IBM WebSphere Application Server is vulnerable to HTTP response splitting attacks. A remote attacker...

7.5CVSS1.1AI score0.02348EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2019/12/17 10:47 p.m.22 views

Security Bulletin: Multiple vulnerabilities in IBM WebSphere affect IBM Control Center (CVE-2016-5983, CVE-2016-2923, CVE-2016-3092)

Summary IBM WebSphere Application Server is shipped as a component of IBM Control Center. Multiple vulnerabilities have been addressed. Vulnerability Details CVEID: CVE-2016-5983 DESCRIPTION: IBM WebSphere Application Server could allow remote attackers to execute arbitrary Java code with a...

7.8CVSS1AI score0.35927EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/17 3:28 p.m.18 views

Security Bulletin: Information disclosure in WebSphere Application Server Liberty affects IBM MessageSight (CVE-2016-2923)

Summary There is an information disclosure vulnerability in IBM WebSphere Application Server Liberty. IBM WebSphere Application Server Liberty is used by IBM MessageSight. IBM MessageSight has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2016-2923 DESCRIPTION: IBM WebSphere...

7.5CVSS0.5AI score0.02348EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/15 7:5 a.m.23 views

Security Bulletin: Information disclosure in WebSphere Application Server Liberty (CVE-2016-2923)

Summary There is an information disclosure vulnerability in IBM WebSphere Application Server Liberty for any users of the JAX-RS API. Vulnerability Details CVEID: CVE-2016-2923 DESCRIPTION: IBM WebSphere Application Server Liberty using JAX-RS API could allow a remote attacker to obtain sensitive...

7.5CVSS7.2AI score0.02348EPSS
Exploits0Affected Software1
CVE
CVEadded 2016/07/07 2:0 p.m.78 views

CVE-2016-2923

CVE-2016-2923 affects IBM WebSphere Application Server Liberty (JAX-RS API cookies) where HTTPOnly flag is not set, enabling remote attackers to read cookies and potentially access sensitive data. Affected: WebSphere Application Server 8.5.x (8.5–8.5.5.9) and Liberty prior to 16.0.0.2. CVSSv3.0 v...

7.5CVSS7.1AI score0.02348EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder