2019-09-20 18:15:13 2019-10-10 01:50:34

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Network Deployment could allow a remote attacker to obtain sensitive information, caused by sending a specially-crafted URL. This can lead the attacker to view any file in a certain directory. IBM X-Force ID: 164364.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE
Ibm Websphere application server 8.5.5.13 ~~liberty~~~ (not an official CPE) Ibm Websphere application server 8.5.5.13 (not an official CPE) Ibm Websphere application server 8.5.5.12 (not an official CPE) Ibm Websphere application server 8.5.5.11 (not an official CPE) Ibm Websphere application server 8.5.5.10 (not an official CPE) Ibm Websphere application server 8.5.5.9 ~~liberty~~~ (not an official CPE) Ibm Websphere application server 8.5.5.9 (not an official CPE) Ibm Websphere application server 8.5.5.8 ~~liberty~~~ (not an official CPE) Ibm Websphere application server 8.5.5.8 (not an official CPE) Ibm Websphere application server 8.5.5.7 ~~liberty~~~ (not an official CPE) Ibm Websphere application server 8.5.5.7 (not an official CPE) Ibm Websphere application server 8.5.5.6 ~~liberty~~~ (not an official CPE) IBM WebSphere Application Server 8.5.5.6 Ibm Websphere application server 8.5.5.5 ~~liberty~~~ (not an official CPE) IBM WebSphere Application Server 8.5.5.5 IBM Websphere Application Server 8.5.5.4 IBM WebSphere Application Server 8.5.5.3 Liberty Profile IBM WebSphere Application Server 8.5.5.33 (Fix Pack 3) IBM WebSphere Application Server 8.5.5.2 Liberty Profile IBM WebSphere Application Server 8.5.5.2 IBM WebSphere Application Server 8.5.5.1 Liberty Profile IBM WebSphere Application Server 8.5.5.1 IBM WebSphere Application Server 8.5.5.0 Liberty Profile IBM WebSphere Application Server 8.5.5.0 IBM WebSphere Application Server 8.5.0.2 Liberty Profile IBM WebSphere Application Server 8.5.0.2 (Fix Pack 2) IBM WebSphere Application Server 8.5.0.1 (Fix Pack 1) Liberty Profile IBM WebSphere Application Server 8.5.0.1 (Fix Pack 1) IBM WebSphere Application Server 8.5.0.0 Liberty Profile Ibm Websphere application server 8.5.0.0 ~~hypervisor~~~ (not an official CPE) Ibm Websphere application server 8.5.0.0 ~~-~~~ (not an official CPE) IBM WebSphere Application Server 8.5.0.0 Ibm Websphere application server 8.5.5.14 (not an official CPE) Ibm Websphere application server 8.5.5.15 (not an official CPE) Ibm Websphere application server 8.5.5.16 (not an official CPE) Ibm Websphere application server 8.5.5.16 ~~-~~~ (not an official CPE) Ibm Websphere application server 8.5.5.16 ~~hypervisor~~~ (not an official CPE) Ibm Websphere application server 9.0.0.0 (not an official CPE) Ibm Websphere application server 9.0.0.0 ~~-~~~ (not an official CPE) Ibm Websphere application server 9.0.0.0 ~~hypervisor~~~ (not an official CPE) Ibm Websphere application server 9.0.0.1 (not an official CPE) Ibm Websphere application server 9.0.0.2 (not an official CPE) Ibm Websphere application server 9.0.0.3 (not an official CPE) Ibm Websphere application server 9.0.0.4 (not an official CPE) Ibm Websphere application server 9.0.0.5 (not an official CPE) Ibm Websphere application server 9.0.0.6 (not an official CPE) Ibm Websphere application server 9.0.0.7 (not an official CPE) Ibm Websphere application server 9.0.0.8 (not an official CPE) Ibm Websphere application server 9.0.0.9 (not an official CPE) Ibm Websphere application server 9.0.0.10 (not an official CPE) Ibm Websphere application server 9.0.0.11 (not an official CPE) Ibm Websphere application server 9.0.5.0 (not an official CPE) IBM WebSphere Virtual Enterprise 7.0 Ibm Websphere virtual enterprise 8.0 (not an official CPE)