Lucene search
China National Vulnerability DatabaseCNVD-2021-87028HistorySep 17, 2021 - 12:00 a.m.
IBM WebSphere Application Server Information Disclosure Vulnerability (CNVD-2021-87028)
2021-09-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
ibm
websphere
application server
information disclosure
vulnerability
login attempts
attacker
usernames
EPSS
0.001
Percentile
42.7%
IBM WebSphere Application Server (WAS) is an application server product from IBM of the United States. The product is a platform for JavaEE and Web services applications and is the foundation of the IBM WebSphere software platform. IBM WebSphere Application Server is vulnerable to an information disclosure vulnerability that stems from differences in responses to valid and invalid login attempts, which could be exploited by an attacker to enumerate usernames.
Related
ibm
ibm
Security Bulletin: A vulnerabilities have been identified in IBM WebSphere Application Server Liberty shipped with IBM® Intelligent Operations Center (CVE-2021-29842)
2022-09-08 06:11:03
cve
cve
CVE-2021-29842
2021-09-16 16:15:08
prion
prion
Code injection
2021-09-16 16:15:00
nessus
nessus
IBM WebSphere Application Server Information Disclosure (6489485)
2021-09-23 00:00:00
cvelist
cvelist
CVE-2021-29842
2021-09-16 15:50:21
nvd
nvd
CVE-2021-29842
2021-09-16 16:15:08