Lucene search
K

9 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/04/07 2:11 p.m.4 views

Security Bulletin: IBM WebSphere Application Server Liberty, which is bundled with IBM WebSphere Hybrid Edition, is affected by a prototype pollution vulnerability due to immutable (CVE-2026-29063)

Summary IBM WebSphere Application Server Liberty, which is bundled with IBM WebSphere Hybrid Edition, is affected by a prototype pollution vulnerability in the immutable library with the openapi-3.0, openapi-3.1, mpOpenAPI-1.0, mpOpenAPI-1.1, mpOpenAPI-2.0, mpOpenAPI-3.0 mpOpenAPI-3.1,...

9.8CVSS5.9AI score0.00978EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/26 11:3 p.m.3 views

CVE-2025-14915

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is affected by privilege escalation. A privileged user could gain additional access to the application server...

6.5CVSS5.8AI score0.00498EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/25 9:30 p.m.4 views

EUVD-2025-209020

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is affected by privilege escalation. A privileged user could gain additional access to the application server...

6.5CVSS5.8AI score0.00498EPSS
Exploits0References2
NVD
NVD
added 2026/03/25 9:16 p.m.2 views

CVE-2025-14915

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is affected by privilege escalation. A privileged user could gain additional access to the application server...

7.2CVSS0.00498EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 8:12 p.m.14 views

CVE-2025-14915

Summary of CVE-2025-14915 (IBM WebSphere Liberty) : IBM WebSphere Application Server Liberty (versions 17.0.0.3–26.0.0.3), including bundles of WebSphere Hybrid Edition, Enterprise Runtimes, or Cloud Pak for Applications, is affected by a privilege escalation when the restConnector-1.0 or restCon...

7.2CVSS5.8AI score0.00498EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/08/12 12:0 a.m.1 views

IBM WebSphere Application Server Liberty 跨站脚本漏洞

IBM WebSphere Application Server Liberty is a lightweight Java application server from IBM for rapid development and deployment of cloud-native applications. A stored cross-site scripting XSS vulnerability exists in IBM WebSphere Application Server Liberty versions 17.0.0.3 through 25.0.0.8, whic...

4.8CVSS5.8AI score0.00165EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/12 12:0 a.m.5 views

PT-2025-32887

Name of the Vulnerable Software and Affected Versions: IBM WebSphere Application Server Liberty versions 17.0.0.3 through 25.0.0.8 Description: IBM WebSphere Application Server Liberty is susceptible to stored cross-site scripting. A privileged user can embed arbitrary JavaScript code into the We...

4.8CVSS5.5AI score0.00165EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2022/10/07 4:1 p.m.26 views

Security Bulletin:Liberty for Java for IBM Cloud is vulnerable to Information Disclosure (CVE-2021-29842)

Summary IBM WebSphere Application Server Liberty is vulnerable to Information Exposure. Vulnerability Details CVEID:CVE-2021-29842 DESCRIPTION: IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0 and Liberty 17.0.0.3 through 21.0.0.9 could allow a remote user to enumerate usernames due to a...

5.3CVSS5AI score0.01302EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2020/04/01 12:0 a.m.1 views

IBM WebSphere Application Server Liberty Cross-Site Scripting Vulnerability (CNVD-2020-22193)

IBM WebSphere Application Server Liberty is a U.S. IBM company built on the Open Liberty project on top of the Java application server . A cross-site scripting vulnerability exists in IBM WebSphere Application Server Liberty versions 17.0.0.3 through 20.0.0.3. The vulnerability stems from a lack ...

6.1CVSS8.7AI score0.00797EPSS
Exploits0References1
Rows per page
Query Builder