exploitDog

GHSA-5q4j-2mw9-cf2p

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 3.1

Описание

Buffer overflow in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 before 8.5.5.10, 9.0 before 9.0.0.1, and Liberty before 16.0.0.3, when HttpSessionIdReuse is enabled, allows remote authenticated users to obtain sensitive information via unspecified vectors.

Buffer overflow in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 before 8.5.5.10, 9.0 before 9.0.0.1, and Liberty before 16.0.0.3, when HttpSessionIdReuse is enabled, allows remote authenticated users to obtain sensitive information via unspecified vectors.

Ссылки

EPSS

Процентиль: 48%

0.00247

Низкий

3.1 Low

CVSS3

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2016-0385

CVSS3: 3.1

nvd

больше 9 лет назад

Buffer overflow in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 before 8.5.5.10, 9.0 before 9.0.0.1, and Liberty before 16.0.0.3, when HttpSessionIdReuse is enabled, allows remote authenticated users to obtain sensitive information via unspecified vectors.

EPSS

Процентиль: 48%

0.00247

Низкий

3.1 Low

CVSS3

CVE ID

Дефекты

CWE-119