5
CVE-2008-5411
- EPSS 1.44%
- Veröffentlicht 10.12.2008 00:30:00
- Zuletzt bearbeitet 16.06.2026 22:59:55
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
IBM WebSphere Application Server (WAS) 7 before 7.0.0.1 sends SSL traffic over "unsecured TCP," which makes it easier for remote attackers to obtain sensitive information by sniffing the network.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Websphere Application Server Version <= 7.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.44% | 0.698 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://secunia.com/advisories/33022
http://www-01.ibm.com/support/docview.wss?uid=swg27014463
http://www-1.ibm.com/support/docview.wss?uid=swg1PK74777
http://www.securityfocus.com/bid/32679
http://www.vupen.com/english/advisories/2008/3370
https://exchange.xforce.ibmcloud.com/vulnerabilities/47135