exploitDog

GHSA-v39j-9cq4-4342

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

IBM WebSphere Application Server (WAS) 6.1.0.9, when the JAAS Login functionality is enabled, allows attackers to perform an internal application hashtable login by (1) not providing a password or (2) providing an empty password.

IBM WebSphere Application Server (WAS) 6.1.0.9, when the JAAS Login functionality is enabled, allows attackers to perform an internal application hashtable login by (1) not providing a password or (2) providing an empty password.

Ссылки

EPSS

Процентиль: 45%

0.00225

Низкий

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2008-7274

nvd

почти 15 лет назад

IBM WebSphere Application Server (WAS) 6.1.0.9, when the JAAS Login functionality is enabled, allows attackers to perform an internal application hashtable login by (1) not providing a password or (2) providing an empty password.

EPSS

Процентиль: 45%

0.00225

Низкий

CVE ID

Дефекты

CWE-20