Описание
IBM WebSphere Application Server Liberty Profile 8.5.x before 8.5.5.4 allows remote attackers to gain privileges by leveraging the combination of a servlet's deployment descriptor security constraints and ServletSecurity annotations.
IBM WebSphere Application Server Liberty Profile 8.5.x before 8.5.5.4 allows remote attackers to gain privileges by leveraging the combination of a servlet's deployment descriptor security constraints and ServletSecurity annotations.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-8890
- https://exchange.xforce.ibmcloud.com/vulnerabilities/99009
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI29911
- http://www-01.ibm.com/support/docview.wss?uid=swg21690185
- http://www-01.ibm.com/support/docview.wss?uid=swg21963275
- http://www.securityfocus.com/bid/71834
- http://www.securitytracker.com/id/1033384
EPSS
Процентиль: 80%
0.01387
Низкий
CVE ID
Связанные уязвимости
nvd
около 11 лет назад
IBM WebSphere Application Server Liberty Profile 8.5.x before 8.5.5.4 allows remote attackers to gain privileges by leveraging the combination of a servlet's deployment descriptor security constraints and ServletSecurity annotations.
EPSS
Процентиль: 80%
0.01387
Низкий