CVE-2025-36047
- EPSS 0.16%
- Veröffentlicht 14.08.2025 15:38:11
- Zuletzt bearbeitet 18.08.2025 17:25:11
IBM WebSphere Application Server Liberty 18.0.0.2 through 25.0.0.8 is vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume memory resources...
CVE-2025-36000
- EPSS 0.03%
- Veröffentlicht 12.08.2025 19:39:17
- Zuletzt bearbeitet 14.08.2025 01:29:01
IBM WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.8 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality p...
CVE-2025-36124
- EPSS 0.07%
- Veröffentlicht 12.08.2025 18:45:24
- Zuletzt bearbeitet 14.08.2025 01:23:45
IBM WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.8 could allow a remote attacker to bypass security restrictions caused by a failure to honor JMS messaging configuration
CVE-2024-56339
- EPSS 0.04%
- Veröffentlicht 07.08.2025 16:03:05
- Zuletzt bearbeitet 14.08.2025 20:02:02
IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 could allow a remote attacker to bypass security restrictions caused by a failure to honor security configuration.
CVE-2025-36097
- EPSS 0.06%
- Veröffentlicht 16.07.2025 17:44:14
- Zuletzt bearbeitet 11.08.2025 19:17:55
IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 are vulnerable to a denial of service, caused by a stack-based overflow. An attacker can send a specially crafted request that cause the server t...
CVE-2023-46158
- EPSS 0.02%
- Veröffentlicht 25.10.2023 18:17:37
- Zuletzt bearbeitet 21.11.2024 08:28:00
IBM WebSphere Application Server Liberty 23.0.0.9 through 23.0.0.10 could provide weaker than expected security due to improper resource expiration handling. IBM X-Force ID: 268775.