7.5

CVE-2016-5983

IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 before 8.5.5.11, 9.0 before 9.0.0.2, and Liberty before 16.0.0.4 allows remote authenticated users to execute arbitrary Java code via a crafted serialized object.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmWebsphere Application Server Version7.0.0.0
IbmWebsphere Application Server Version7.0.0.1
IbmWebsphere Application Server Version7.0.0.2
IbmWebsphere Application Server Version7.0.0.3
IbmWebsphere Application Server Version7.0.0.4
IbmWebsphere Application Server Version7.0.0.5
IbmWebsphere Application Server Version7.0.0.6
IbmWebsphere Application Server Version7.0.0.7
IbmWebsphere Application Server Version7.0.0.8
IbmWebsphere Application Server Version7.0.0.9
IbmWebsphere Application Server Version7.0.0.10
IbmWebsphere Application Server Version7.0.0.11
IbmWebsphere Application Server Version7.0.0.12
IbmWebsphere Application Server Version7.0.0.13
IbmWebsphere Application Server Version7.0.0.14
IbmWebsphere Application Server Version7.0.0.15
IbmWebsphere Application Server Version7.0.0.16
IbmWebsphere Application Server Version7.0.0.17
IbmWebsphere Application Server Version7.0.0.18
IbmWebsphere Application Server Version7.0.0.19
IbmWebsphere Application Server Version7.0.0.21
IbmWebsphere Application Server Version7.0.0.22
IbmWebsphere Application Server Version7.0.0.23
IbmWebsphere Application Server Version7.0.0.24
IbmWebsphere Application Server Version7.0.0.25
IbmWebsphere Application Server Version7.0.0.27
IbmWebsphere Application Server Version7.0.0.28
IbmWebsphere Application Server Version7.0.0.29
IbmWebsphere Application Server Version7.0.0.31
IbmWebsphere Application Server Version7.0.0.32
IbmWebsphere Application Server Version7.0.0.33
IbmWebsphere Application Server Version7.0.0.34
IbmWebsphere Application Server Version7.0.0.35
IbmWebsphere Application Server Version7.0.0.36
IbmWebsphere Application Server Version7.0.0.37
IbmWebsphere Application Server Version7.0.0.38
IbmWebsphere Application Server Version7.0.0.39
IbmWebsphere Application Server Version7.0.0.41
IbmWebsphere Application Server Version8.0.0.0
IbmWebsphere Application Server Version8.0.0.1
IbmWebsphere Application Server Version8.0.0.2
IbmWebsphere Application Server Version8.0.0.3
IbmWebsphere Application Server Version8.0.0.4
IbmWebsphere Application Server Version8.0.0.5
IbmWebsphere Application Server Version8.0.0.6
IbmWebsphere Application Server Version8.0.0.7
IbmWebsphere Application Server Version8.0.0.8
IbmWebsphere Application Server Version8.0.0.9
IbmWebsphere Application Server Version8.0.0.10
IbmWebsphere Application Server Version8.0.0.11
IbmWebsphere Application Server Version8.0.0.12
IbmWebsphere Application Server Version8.5.0.0
IbmWebsphere Application Server Version8.5.0.0 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.0.1 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.0.2 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.5.0 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.5.1 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.5.2 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.5.4
IbmWebsphere Application Server Version8.5.5.5
IbmWebsphere Application Server Version8.5.5.6
IbmWebsphere Application Server Version8.5.5.7
IbmWebsphere Application Server Version8.5.5.8
IbmWebsphere Application Server Version8.5.5.9
IbmWebsphere Application Server Version9.0.0.0
IbmWebsphere Application Server Version7.0.0.0
IbmWebsphere Application Server Version7.0.0.1
IbmWebsphere Application Server Version7.0.0.2
IbmWebsphere Application Server Version7.0.0.3
IbmWebsphere Application Server Version7.0.0.4
IbmWebsphere Application Server Version7.0.0.5
IbmWebsphere Application Server Version7.0.0.6
IbmWebsphere Application Server Version7.0.0.7
IbmWebsphere Application Server Version7.0.0.8
IbmWebsphere Application Server Version7.0.0.9
IbmWebsphere Application Server Version7.0.0.10
IbmWebsphere Application Server Version7.0.0.11
IbmWebsphere Application Server Version7.0.0.12
IbmWebsphere Application Server Version7.0.0.13
IbmWebsphere Application Server Version7.0.0.14
IbmWebsphere Application Server Version7.0.0.15
IbmWebsphere Application Server Version7.0.0.16
IbmWebsphere Application Server Version7.0.0.17
IbmWebsphere Application Server Version7.0.0.18
IbmWebsphere Application Server Version7.0.0.19
IbmWebsphere Application Server Version7.0.0.21
IbmWebsphere Application Server Version7.0.0.22
IbmWebsphere Application Server Version7.0.0.23
IbmWebsphere Application Server Version7.0.0.24
IbmWebsphere Application Server Version7.0.0.25
IbmWebsphere Application Server Version7.0.0.27
IbmWebsphere Application Server Version7.0.0.28
IbmWebsphere Application Server Version7.0.0.29
IbmWebsphere Application Server Version7.0.0.31
IbmWebsphere Application Server Version7.0.0.32
IbmWebsphere Application Server Version7.0.0.33
IbmWebsphere Application Server Version7.0.0.34
IbmWebsphere Application Server Version7.0.0.35
IbmWebsphere Application Server Version7.0.0.36
IbmWebsphere Application Server Version7.0.0.37
IbmWebsphere Application Server Version7.0.0.38
IbmWebsphere Application Server Version7.0.0.39
IbmWebsphere Application Server Version7.0.0.41
IbmWebsphere Application Server Version8.0.0.0
IbmWebsphere Application Server Version8.0.0.1
IbmWebsphere Application Server Version8.0.0.2
IbmWebsphere Application Server Version8.0.0.3
IbmWebsphere Application Server Version8.0.0.4
IbmWebsphere Application Server Version8.0.0.5
IbmWebsphere Application Server Version8.0.0.6
IbmWebsphere Application Server Version8.0.0.7
IbmWebsphere Application Server Version8.0.0.8
IbmWebsphere Application Server Version8.0.0.9
IbmWebsphere Application Server Version8.0.0.10
IbmWebsphere Application Server Version8.0.0.11
IbmWebsphere Application Server Version8.0.0.12
IbmWebsphere Application Server Version8.5.0.0
IbmWebsphere Application Server Version8.5.0.0 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.0.1 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.0.2 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.5.0 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.5.1 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.5.2 Update- Editionliberty_profile
IbmWebsphere Application Server Version8.5.5.4
IbmWebsphere Application Server Version8.5.5.5
IbmWebsphere Application Server Version8.5.5.6
IbmWebsphere Application Server Version8.5.5.7
IbmWebsphere Application Server Version8.5.5.8
IbmWebsphere Application Server Version8.5.5.9
IbmWebsphere Application Server Version8.5.5.10
IbmWebsphere Application Server Version9.0.0.0
IbmWebsphere Application Server Version9.0.0.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.12% 0.895
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 1.6 5.9
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P
CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

http://www-01.ibm.com/support/docview.wss?uid=swg1PI62375
Broken Link
http://www.securityfocus.com/bid/93162
https://www-01.ibm.com/support/docview.wss?uid=swg21990060
Patch
Vendor Advisory