Websphere Message Broker Security Vulnerabilities and Issues — Websphere Message Broker CVE List

Lucene search

IbmWebsphere Message Broker

3 matches found

CVE•added 2009/02/13 5:30 p.m.•56 views

CVE-2009-0503

IBM WebSphere Message Broker 6.1.x before 6.1.0.2 writes a database connection password to the Event Log and System Log during exception handling for a JDBC error, which allows local users to obtain sensitive information by reading these logs.

2.1CVSS6AI score0.00063EPSS

CVE•added 2017/07/05 6:29 p.m.•50 views

CVE-2017-1144

IBM WebSphere Message Broker could allow a local user with specialized access to prevent the message broker from starting. IBM X-Force ID: 122033.

2.5CVSS3.5AI score0.00058EPSS

CVE•added 2013/02/20 12:9 p.m.•28 views

CVE-2013-0466

Cross-site scripting (XSS) vulnerability in IBM WebSphere Message Broker 7.0 before 7.0.0.6 and 8.0 before 8.0.0.2, when wsdl support is enabled on a SOAPInput node, allows remote attackers to inject arbitrary web script or HTML via a wsdl request that is not properly handled during construction of...

2.6CVSS5.7AI score0.00266EPSS