Описание
IBM WebSphere Application Server 8.5 and 9.0 could allow an attacker with access to the network to conduct spoofing attacks. An attacker could exploit this vulnerability using a certificate issued by a trusted authority to obtain sensitive information. IBM X-Force ID: 274714.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:websphere_application_server:8.5.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_application_server:9.0.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00114
Низкий
5.3 Medium
CVSS3
5.9 Medium
CVSS3
Дефекты
CWE-295
NVD-CWE-Other
Связанные уязвимости
CVSS3: 5.3
github
больше 1 года назад
IBM WebSphere Application Server 8.5 and 9.0 could allow an attacker with access to the network to conduct spoofing attacks. An attacker could exploit this vulnerability using a certificate issued by a trusted authority to obtain sensitive information. IBM X-Force ID: 274714.
EPSS
Процентиль: 30%
0.00114
Низкий
5.3 Medium
CVSS3
5.9 Medium
CVSS3
Дефекты
CWE-295
NVD-CWE-Other