9 matches found
Security Bulletin: IBM WebSphere Application Server Liberty, which is bundled with IBM WebSphere Hybrid Edition, is affected by a prototype pollution vulnerability due to immutable (CVE-2026-29063)
Summary IBM WebSphere Application Server Liberty, which is bundled with IBM WebSphere Hybrid Edition, is affected by a prototype pollution vulnerability in the immutable library with the openapi-3.0, openapi-3.1, mpOpenAPI-1.0, mpOpenAPI-1.1, mpOpenAPI-2.0, mpOpenAPI-3.0 mpOpenAPI-3.1,...
CVE-2025-14915
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is affected by privilege escalation. A privileged user could gain additional access to the application server...
EUVD-2025-209020
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is affected by privilege escalation. A privileged user could gain additional access to the application server...
CVE-2025-14915
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is affected by privilege escalation. A privileged user could gain additional access to the application server...
CVE-2025-14915
Summary of CVE-2025-14915 (IBM WebSphere Liberty) : IBM WebSphere Application Server Liberty (versions 17.0.0.3–26.0.0.3), including bundles of WebSphere Hybrid Edition, Enterprise Runtimes, or Cloud Pak for Applications, is affected by a privilege escalation when the restConnector-1.0 or restCon...
IBM WebSphere Application Server Liberty 跨站脚本漏洞
IBM WebSphere Application Server Liberty is a lightweight Java application server from IBM for rapid development and deployment of cloud-native applications. A stored cross-site scripting XSS vulnerability exists in IBM WebSphere Application Server Liberty versions 17.0.0.3 through 25.0.0.8, whic...
PT-2025-32887
Name of the Vulnerable Software and Affected Versions: IBM WebSphere Application Server Liberty versions 17.0.0.3 through 25.0.0.8 Description: IBM WebSphere Application Server Liberty is susceptible to stored cross-site scripting. A privileged user can embed arbitrary JavaScript code into the We...
Security Bulletin:Liberty for Java for IBM Cloud is vulnerable to Information Disclosure (CVE-2021-29842)
Summary IBM WebSphere Application Server Liberty is vulnerable to Information Exposure. Vulnerability Details CVEID:CVE-2021-29842 DESCRIPTION: IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0 and Liberty 17.0.0.3 through 21.0.0.9 could allow a remote user to enumerate usernames due to a...
IBM WebSphere Application Server Liberty Cross-Site Scripting Vulnerability (CNVD-2020-22193)
IBM WebSphere Application Server Liberty is a U.S. IBM company built on the Open Liberty project on top of the Java application server . A cross-site scripting vulnerability exists in IBM WebSphere Application Server Liberty versions 17.0.0.3 through 20.0.0.3. The vulnerability stems from a lack ...