Websphere Application Server Security Vulnerabilities and Issues — Websphere Application Server CVE List

Lucene search

IbmWebsphere Application Server

4 matches found

CVE•added 2008/12/10 12:30 a.m.•40 views

CVE-2008-5412

Unspecified vulnerability in IBM WebSphere Application Server (WAS) 7 before 7.0.0.1 on Windows has unknown impact and attack vectors related to JSPs. NOTE: this is probably a duplicate of CVE-2009-0438.

10CVSS6.2AI score0.01349EPSS

CVE•added 2008/12/10 12:30 a.m.•37 views

CVE-2008-5413

PerfServlet in the PMI/Performance Tools component in IBM WebSphere Application Server (WAS) 7 before 7.0.0.1 allows attackers to obtain sensitive information by reading the (1) systemout.log and (2) ffdc files. NOTE: this is probably a duplicate of CVE-2009-0434.

5CVSS5.7AI score0.00302EPSS

CVE•added 2008/12/10 12:30 a.m.•37 views

CVE-2008-5414

Unspecified vulnerability in the Feature Pack for Web Services in the Web Services Security component in IBM WebSphere Application Server (WAS) 7 before 7.0.0.1 has unknown impact and attack vectors related to "userNameToken."

10CVSS6.2AI score0.01269EPSS

CVE•added 2008/12/10 12:30 a.m.•32 views

CVE-2008-5411

IBM WebSphere Application Server (WAS) 7 before 7.0.0.1 sends SSL traffic over "unsecured TCP," which makes it easier for remote attackers to obtain sensitive information by sniffing the network.

5CVSS5.9AI score0.00427EPSS