Latest ibm websphere application server Vulnerabilities

IBM-7149330
IBM WebSphere Application Server Liberty<=17.0.0.3 - 24.0.0.4
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=9.0
CVE-2024-25026
IBM WebSphere Application Server denial of service
IBM WebSphere Application Server Liberty<=17.0.0.3 - 24.0.0.4
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=9.0
CVE-2024-22329
IBM WebSphere Application Server server-side request forgery
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=9.0
IBM WebSphere Application Server Liberty<=17.0.0.3 - 24.0.0.3
IBM-7148426
IBM WebSphere Application Server Liberty<=17.0.0.3 - 24.0.0.4
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
CVE-2024-22354
IBM WebSphere Application Server XML external entity injection
IBM WebSphere Application Server Liberty<=17.0.0.3 - 24.0.0.4
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
IBM-7148380
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=9.0
IBM WebSphere Application Server Liberty<=17.0.0.3 - 24.0.0.3
CVE-2023-50313
IBM WebSphere Application Server information disclosure
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server=8.5
Ibm Websphere Application Server=9.0
IBM-7145620
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
CVE-2024-22353
IBM WebSphere Application Server Liberty denial of service
Ibm Websphere Application Server>=17.0.0.3<=24.0.0.3
IBM WebSphere Application Server Liberty<=17.0.0.3 - 24.0.0.4
CVE-2023-38737
IBM WebSphere Application Server Liberty 22.0.0.13 through 23.0.0.7 is vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerabil...
Ibm Websphere Application Server>=22.0.0.13<=23.0.0.7
IBM WebSphere Application Server Liberty<=22.0.0.13 - 23.0.0.7
IBM-7007857
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
CVE-2023-35890
IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security, caused by the improper encoding in a local configuration file. IBM X-Force ID: 258637.
Ibm Websphere Application Server=8.5.5.23
Ibm Websphere Application Server=9.0.5.15
Ibm Websphere Application Server=9.0.5.16
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
CVE-2023-30441
IBM Runtime Environment, Java Technology Edition IBMJCEPlus and JSSE 8.0.7.0 through 8.0.7.11 components could expose sensitive information using a combination of flaws and configurations. IBM X-Forc...
Ibm Infosphere Information Server=11.7
IBM Java>=8.0.7.0<8.0.7.15
Ibm Websphere Application Server>=8.5.0.0<8.5.5.23
Ibm Websphere Application Server
Ibm Websphere Application Server=9.0.0.0
IBM Cloud Pak for Business Automation=1.1
and 1 more
IBM-6986617
IBM WebSphere Application Server Liberty<=Continuous delivery
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5.0.0 - 8.5.5.22
CVE-2023-24966
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended function...
Ibm Websphere Application Server>=8.5.0.0<8.5.5.24
Ibm Websphere Application Server>=9.0.0.0<9.0.5.16
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
IBM-6986333
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
IBM-6964836
Ibm Websphere Application Server<=9.0
CVE-2023-26283
IBM WebSphere Application Server 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality po...
Ibm Websphere Application Server=9.0
HP HP-UX
IBM AIX
IBM i
IBM WebSphere Application Server Liberty
Linux Linux kernel
and 3 more
IBM-6891111
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
IBM-6833552
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
CVE-2022-40750
IBM WebSphere Application Server 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functio...
Ibm Websphere Application Server=8.5
Ibm Websphere Application Server=9.0
HP HP-UX
IBM AIX
IBM i
IBM WebSphere Application Server Liberty
and 5 more
IBM-6829907
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
CVE-2022-38712
"IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Web services could allow a man-in-the-middle attacker to conduct SOAPAction spoofing to execute unwanted or unauthorized operations. IBM X-Forc...
Ibm Websphere Application Server>=7.0.0.0<7.0.0.45
Ibm Websphere Application Server>=8.0.0.0<8.0.0.15
Ibm Websphere Application Server>=8.5.0.0<8.5.5.23
Ibm Websphere Application Server>=9.0.0.0<9.0.5.14
HP HP-UX
IBM AIX
and 9 more
IBM-6824179
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
CVE-2022-35282
IBM WebSphere Application Server is vulnerable to server-side request forgery (SSRF). By sending a specially crafted request, an attacker with local network access could exploit this vulnerability to ...
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
Ibm Websphere Application Server>=7.0.0.0<7.0.0.45
Ibm Websphere Application Server>=8.0.0.0<8.0.0.15
and 2 more
IBM-6619699
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
CVE-2022-34336
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intend...
Ibm Websphere Application Server=7.0
Ibm Websphere Application Server=8.0
Ibm Websphere Application Server=8.5
Ibm Websphere Application Server=9.0
HP HP-UX
IBM AIX
and 9 more
CVE-2022-34165
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.9 are vulnerable to HTTP header injection, caused by improper validation. T...
IBM Security Verify Access Docker<=10.0.X
IBM Security Verify Access<=10.0.X
Ibm Websphere Application Server>=7.0.0.0<=7.0.0.45
Ibm Websphere Application Server>=8.0.0.0<=8.0.0.15
Ibm Websphere Application Server>=8.5.0.0<=8.5.5.22
Ibm Websphere Application Server>=9.0.0.0<=9.0.5.13
and 9 more
IBM-6618747
IBM WebSphere Application Server Liberty<=17.0.0.3 - 22.0.0.9
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
CVE-2022-22477
IBM WebSphere Application Server is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potent...
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server=8.5
Ibm Websphere Application Server=9.0
HP HP-UX
IBM AIX
and 5 more
CVE-2022-22473
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to obtain sensitive information caused by improper handling of Administrative Console data. This information could...
Ibm Websphere Application Server>=7.0.0.0<=7.0.0.45
Ibm Websphere Application Server>=8.0.0.0<=8.0.0.15
Ibm Websphere Application Server>=8.5.0.0<=8.5.5.21
Ibm Websphere Application Server>=9.0.0.0<=9.0.5.12
HP HP-UX
IBM AIX
and 9 more
IBM-6603421
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
IBM-6603417
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
CVE-2022-22476
IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.7 and Open Liberty are vulnerable to identity spoofing by an authenticated user using a specially crafted request. IBM X-Force ID: 2256...
Ibm Open Liberty>=17.0.0.3<22.0.0.8
Ibm Websphere Application Server>=17.0.0.3<22.0.0.8
IBM Security Verify Access Docker<=10.0.X
IBM Security Verify Access<=10.0.X
CVE-2022-22365
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0, with the Ajax Proxy Web Application (AjaxProxy.war) deployed, is vulnerable to spoofing by allowing a man-in-the-middle attacker to spoof SSL s...
Ibm Websphere Application Server>=7.0.0.0<=7.0.0.45
Ibm Websphere Application Server>=8.0.0.0<=8.0.0.15
Ibm Websphere Application Server>=8.5.0.0<=8.5.5.21
Ibm Websphere Application Server>=9.0.0.0<=9.0.5.11
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
and 2 more
CVE-2022-22475
IBM WebSphere Application Server Liberty and Open Liberty 17.0.0.3 through 22.0.0.5 are vulnerable to identity spoofing by an authenticated user. IBM X-Force ID: 225603.
Ibm Open Liberty>=17.0.0.3<=22.0.0.5
Ibm Websphere Application Server>=17.0.0.3<=22.0.0.5
IBM Security Directory Suite VA<=8.0.1-8.0.1.19
CVE-2022-22393
IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.5 , with the adminCenter-1.0 feature configured, could allow an authenticated user to issue a request to obtain the status of HTTP/HTTP...
Ibm Websphere Application Server>=17.0.0.3<=22.0.0.5
IBM WebSphere Application Server Liberty<=17.0.0.3-22.0.0.5
CVE-2021-39038
IBM WebSphere Application Server 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.2 could allow a remote attacker to hijack the clicking action of the victim. By persuading a v...
Ibm Websphere Application Server>=9.0.0.0<9.0.5.12
Ibm Websphere Application Server>=17.0.0.3<=22.0.0.2
CVE-2022-22310
IBM WebSphere Application Server Liberty 21.0.0.10 through 21.0.0.12 could provide weaker than expected security. A remote attacker could exploit this weakness to obtain sensitive information and gain...
Ibm Websphere Application Server>=21.0.0.10<=21.0.0.12
Apple macOS
HP HP-UX
IBM AIX
IBM i
IBM WebSphere Application Server Liberty
and 4 more
CVE-2021-38951
IBM WebSphere Application Server is vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume ...
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
Ibm Websphere Application Server=7.0
Ibm Websphere Application Server=8.0
and 9 more
IBM-6524674
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
CVE-2021-29842
IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0 and Liberty 17.0.0.3 through 21.0.0.9 could allow a remote user to enumerate usernames due to a difference of responses from valid and invalid login...
Ibm Websphere Application Server>=7.0.0.0<=7.0.0.45
Ibm Websphere Application Server>=8.0.0.0<=8.0.0.15
Ibm Websphere Application Server>=8.5<=8.5.5.20
Ibm Websphere Application Server>=9.0.0.0<=9.0.5.9
Ibm Websphere Application Server>=17.0.0.3<=21.0.0.9
Ibm Websphere Application Server<=9.0
and 4 more
IBM-6489485
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
IBM WebSphere Application Server Liberty<=17.0.0.3 - 21.0.0.9
IBM-6476678
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
CVE-2021-29736
IBM WebSphere Application Server could allow a remote user to gain elevated privileges on the system.
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
Ibm Websphere Application Server>=7.0.0.0<=7.0.0.45
Ibm Websphere Application Server>=8.0.0.0<=8.0.0.15
and 9 more
IBM-6462627
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
CVE-2021-29754
Ibm Websphere Application Server>=7.0.0.0<7.0.0.45
Ibm Websphere Application Server>=8.0.0.0<8.0.0.15
Ibm Websphere Application Server>=8.5.0.0<8.5.5.20
Ibm Websphere Application Server>=9.0.0.0<9.0.5.8
HP HP-UX
IBM AIX
and 9 more
IBM-6456017
IBM WebSphere Application Server Liberty<=17.0.0.3 - 21.0.0.6
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
CVE-2021-20454
IBM WebSphere Application Server is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive informat...
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0
Ibm Websphere Application Server>=7.0.0.0<=7.0.0.45
Ibm Websphere Application Server>=8.0.0.0<=8.0.0.15
and 2 more
IBM-6445481
Ibm Websphere Application Server<=9.0
Ibm Websphere Application Server<=8.5
Ibm Websphere Application Server<=8.0
Ibm Websphere Application Server<=7.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203