Websphere Extreme Scale@8.5.0 Security Vulnerabilities and Issues — Websphere Extreme Scale@8.5.0 CVE List

Lucene search

IbmWebsphere Extreme Scale8.5.0

5 matches found

CVE•added 2013/10/16 10:52 a.m.•39 views

CVE-2013-5393

The monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 does not properly process logoff actions, which has unspecified impact and remote attack vectors.

7.5CVSS6.7AI score0.00396EPSS

CVE•added 2016/07/02 2:59 p.m.•39 views

CVE-2016-0400

CRLF injection vulnerability in IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3, 7.1.1 before 7.1.1.1, 8.5 before 8.5.0.3, and 8.6 before 8.6.0.8 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.

6.1CVSS6.1AI score0.03486EPSS

CVE•added 2013/10/16 10:52 a.m.•37 views

CVE-2013-5390

Cross-site scripting (XSS) vulnerability in the monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

3.5CVSS5.2AI score0.00188EPSS

CVE•added 2013/10/16 10:52 a.m.•32 views

CVE-2013-5394

The monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 allows remote authenticated users to conduct phishing attacks via unspecified vectors.

4.9CVSS6.1AI score0.0016EPSS

CVE•added 2016/07/02 2:59 p.m.•28 views

CVE-2016-2861

IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3, 7.1.1 before 7.1.1.1, 8.5 before 8.5.0.3, and 8.6 before 8.6.0.8 does not properly encrypt data, which makes it easier for remote attackers to obtain sensitive information by sniffing the network.

4.3CVSS4.5AI score0.00226EPSS