Lucene search
China National Vulnerability DatabaseCNVD-2022-63368HistoryMay 16, 2022 - 12:00 a.m.
IBM WebSphere Application Server Liberty Information Disclosure Vulnerability (CNVD-2022-63368)
2022-05-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
19
ibm
websphere
application server
liberty
information disclosure
vulnerability
cnvd-2022-63368
java
open liberty
admincenter-1.0
data access restrictions
sensitive information
EPSS
0.001
Percentile
23.7%
IBM WebSphere Application Server Liberty is a Java application server from IBM built on top of the Open Liberty project. IBM WebSphere Application Server Liberty is vulnerable to an information disclosure vulnerability that originates when The vulnerability stems from the fact that when adminCenter-1.0 functionality is enabled, the application lacks protection for information and an attacker can use the vulnerability to bypass data access restrictions to read sensitive information.
Related
nessus
nessus
ibm
ibm
Security Bulletin: An information disclosure vulnerablity in IBM WebSphere Application Server Liberty affects TXSeries for Multiplatforms
2022-09-22 11:56:15
cve
cve
CVE-2022-22393
2022-05-13 17:15:07
prion
prion
Design/Logic Flaw
2022-05-13 17:15:00
cvelist
cvelist
CVE-2022-22393
2022-05-13 16:15:20
nvd
nvd
CVE-2022-22393
2022-05-13 17:15:07