Websphere Application Server@9.0.0.0 Security Vulnerabilities and Issues — Websphere Application Server@9.0.0.0 CVE List

Lucene search

IbmWebsphere Application Server9.0.0.0

3 matches found

CVE•added 2018/07/06 2:29 p.m.•53 views

CVE-2018-1621

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local attacker to obtain clear text password in a trace file caused by improper handling of some datasource custom properties. IBM X-Force ID: 144346.

6.7CVSS6.3AI score0.00054EPSS

CVE•added 2018/11/26 5:0 p.m.•48 views

CVE-2018-1905

IBM WebSphere Application Server 9.0.0.0 through 9.0.0.9 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 152534.

7.1CVSS6.9AI score0.00483EPSS

CVE•added 2018/10/12 5:29 a.m.•32 views

CVE-2018-1838

IBM WebSphere Application Server 8.5 and 9.0 in IBM Cloud could allow a remote attacker to obtain sensitive information caused by improper handling of passwords. IBM X-Force ID: 150811.

6.5CVSS6.7AI score0.00129EPSS