Lucene search
K

8 matches found

ibm
ibm
added 2020/08/18 9:20 p.m.29 views

Security Bulletin: IBM Cloud Private is vulnerable to IBM WebSphere Application Server Liberty vulnerabilities (CVE-2020-4303, CVE-2020-4304)

Summary IBM Cloud Private is vulnerable to IBM WebSphere Application Server Liberty vulnerabilities Vulnerability Details CVEID: CVE-2020-4303 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through 20.0.0.3 is vulnerable to cross-site scripting. This vulnerability allows users t...

6.1CVSS0.7AI score0.00797EPSS
Exploits0Affected Software1
ibm
ibm
added 2020/07/16 6:53 p.m.26 views

Security Bulletin: IBM WebSphere Application Server Liberty XSS Vulnerabilities Affect IBM Control Center (CVE-2020-4303, CVE-2020-4304)

Summary IBM Control Center WebSphere Application Server - Liberty is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

6.1CVSS1.5AI score0.00797EPSS
Exploits0Affected Software1
ibm
ibm
added 2020/07/07 1:14 p.m.24 views

Security Bulletin: Multiple security vulnerabilities in IBM WebSphere Application Server Liberty shipped with IBM Cloud Pak System family products

Summary IBM WebSphere Application Server is shipped as component of IBM Cloud Pak System family products. Information about security vulnerabilities affecting WebSphere Application Server Liberty have been published in security bulletins. Vulnerability Details Refer to the security bulletins list...

6.1CVSS0.1AI score0.00797EPSS
Exploits0Affected Software1
ibm
ibm
added 2020/06/30 12:27 p.m.26 views

Security Bulletin: Vulnerability in WebSphere Application Server Liberty affect IBM Operations Analytics - Log Analysis (CVE-2020-4303, CVE-2020-4304)

Summary There is a cross-site scripting vulnerability in the OAuth, OpenID Connect and SAML features. This has been addressed. Vulnerability Details CVEID: CVE-2020-4303 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through 20.0.0.3 is vulnerable to cross-site scripting. This...

6.1CVSS0.8AI score0.00797EPSS
Exploits0Affected Software1
ibm
ibm
added 2020/06/02 9:22 p.m.22 views

Security Bulletin: WebSphere Application Server Liberty is vulnerable to Cross-site Scripting (CVE-2020-4303, CVE-2020-4304)

Summary There is a cross-site scripting vulnerability in the OAuth, OpenID Connect and SAML features. This has been addressed. Vulnerability Details CVEID: CVE-2020-4303 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through 20.0.0.3 is vulnerable to cross-site scripting. This...

6.1CVSS0.7AI score0.00797EPSS
Exploits0Affected Software1
redhat
redhat
added 2020/04/13 6:31 p.m.55 views

(RHSA-2020:1428) Moderate: Open Liberty 20.0.0.4 Runtime security update

Open Liberty is a lightweight open framework for building fast and efficient cloud-native Java microservices. This release of Open Liberty 20.0.0.4 serves as a replacement for Open Liberty 20.0.0.3 and includes security fixes, bug fixes, and enhancements. For specific information about this...

6.1CVSS1AI score0.00797EPSS
Exploits0
cve
cve
added 2020/04/02 2:20 p.m.58 views

CVE-2020-4304

Summary (CVE-2020-4304): IBM WebSphere Application Server Liberty components are affected by a cross-site scripting (XSS) vulnerability in the Web UI. Affects Liberty 17.0.0.3 through 20.0.0.3; exploitation could lead to credentials disclosure within a trusted session. The connected IBM bulletins...

6.1CVSS5.8AI score0.00797EPSS
Exploits0References2Affected Software1
ibm
ibm
added 2020/03/31 8:48 p.m.27 views

Security Bulletin: WebSphere Application Server Liberty shipped with IBM WebSphere Application Server Patterns is vulnerable to Cross-site Scripting (CVE-2020-4303, CVE-2020-4304)

Summary WebSphere Application Server is shipped as a component of IBM WebSphere Application Server Patterns. Information about security vulnerabilities affecting WebSphere Application Server have been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed i...

6.1CVSS1.7AI score0.00797EPSS
Exploits0Affected Software1
Rows per page
Query Builder