Websphere Application Server@6.0.2.3 Security Vulnerabilities and Issues — Page 2 of Websphere Application Server@6.0.2.3 CVE List

Lucene search

IbmWebsphere Application Server6.0.2.3

54 matches found

CVE•added 2008/10/22 6:0 p.m.•34 views

CVE-2008-4679

The Web Services Security component in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.31 and 6.1 before 6.1.0.19, when Certificate Store Collections is configured to use Certificate Revocation Lists (CRL), does not call the setRevocationEnabled method on the PKIXBuilderParameters object,...

6.8CVSS6.4AI score0.00302EPSS

CVE•added 2009/02/10 10:30 p.m.•33 views

CVE-2009-0436

The (1) mod_ibm_ssl and (2) mod_cgid modules in IBM HTTP Server 6.0.x before 6.0.2.31 and 6.1.x before 6.1.0.19, as used in WebSphere Application Server (WAS), set incorrect permissions for AF_UNIX sockets, which has unknown impact and local attack vectors.

7.2CVSS6.4AI score0.00058EPSS

CVE•added 2006/12/19 8:28 p.m.•32 views

CVE-2006-6637

The Servlet Engine and Web Container in IBM WebSphere Application Server (WAS) before 6.0.2.17, when ibm-web-ext.xmi sets fileServingEnabled to true and servlet caching is enabled, allows remote attackers to obtain JSP source code and other sensitive information via "specific requests."

5CVSS6.3AI score0.01013EPSS

CVE•added 2006/12/19 8:28 p.m.•27 views

CVE-2006-6636

Unspecified vulnerability in the Utility Classes for IBM WebSphere Application Server (WAS) before 5.1.1.13 and 6.x before 6.0.2.17 has unknown impact and attack vectors.

10CVSS6.4AI score0.01591EPSS

Total number of security vulnerabilities54