Lucene search
HistoryAug 22, 2015 - 11:59 p.m.
CVE-2015-4938
cve-2015-4938
ibm
websphere
application server
spoofing
servlets
security vulnerability
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
8 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.2%
IBM WebSphere Application Server 7.x before 7.0.0.39, 8.0.x before 8.0.0.11, and 8.5.x before 8.5.5.7 allows remote attackers to spoof servlets and obtain sensitive information via unspecified vectors.
Affected configurations
Node
ibmwebsphere_application_serverMatch7.0.0.1
ORibmwebsphere_application_serverMatch7.0.0.2
ORibmwebsphere_application_serverMatch7.0.0.3
ORibmwebsphere_application_serverMatch7.0.0.4
ORibmwebsphere_application_serverMatch7.0.0.5
ORibmwebsphere_application_serverMatch7.0.0.6
ORibmwebsphere_application_serverMatch7.0.0.7
ORibmwebsphere_application_serverMatch7.0.0.8
ORibmwebsphere_application_serverMatch7.0.0.9
ORibmwebsphere_application_serverMatch7.0.0.10
ORibmwebsphere_application_serverMatch7.0.0.11
ORibmwebsphere_application_serverMatch7.0.0.12
ORibmwebsphere_application_serverMatch7.0.0.13
ORibmwebsphere_application_serverMatch7.0.0.14
ORibmwebsphere_application_serverMatch7.0.0.15
ORibmwebsphere_application_serverMatch7.0.0.16
ORibmwebsphere_application_serverMatch7.0.0.17
ORibmwebsphere_application_serverMatch7.0.0.18
ORibmwebsphere_application_serverMatch7.0.0.19
ORibmwebsphere_application_serverMatch7.0.0.21
ORibmwebsphere_application_serverMatch7.0.0.22
ORibmwebsphere_application_serverMatch7.0.0.23
ORibmwebsphere_application_serverMatch7.0.0.24
ORibmwebsphere_application_serverMatch7.0.0.25
ORibmwebsphere_application_serverMatch7.0.0.27
ORibmwebsphere_application_serverMatch7.0.0.29
ORibmwebsphere_application_serverMatch7.0.0.31
ORibmwebsphere_application_serverMatch7.0.0.32
ORibmwebsphere_application_serverMatch7.0.0.33
ORibmwebsphere_application_serverMatch7.0.0.34
ORibmwebsphere_application_serverMatch7.0.0.36
ORibmwebsphere_application_serverMatch7.0.0.37
ORibmwebsphere_application_serverMatch7.0.0.38
ORibmwebsphere_application_serverMatch8.0.0.0
ORibmwebsphere_application_serverMatch8.0.0.1
ORibmwebsphere_application_serverMatch8.0.0.2
ORibmwebsphere_application_serverMatch8.0.0.3
ORibmwebsphere_application_serverMatch8.0.0.4
ORibmwebsphere_application_serverMatch8.0.0.5
ORibmwebsphere_application_serverMatch8.0.0.6
ORibmwebsphere_application_serverMatch8.0.0.7
ORibmwebsphere_application_serverMatch8.0.0.8
ORibmwebsphere_application_serverMatch8.0.0.9
ORibmwebsphere_application_serverMatch8.0.0.10
ORibmwebsphere_application_serverMatch8.5.0.0
ORibmwebsphere_application_serverMatch8.5.0.1
ORibmwebsphere_application_serverMatch8.5.0.2
ORibmwebsphere_application_serverMatch8.5.5.0
ORibmwebsphere_application_serverMatch8.5.5.1
ORibmwebsphere_application_serverMatch8.5.5.2
ORibmwebsphere_application_serverMatch8.5.5.3
ORibmwebsphere_application_serverMatch8.5.5.4
ORibmwebsphere_application_serverMatch8.5.5.5
ORibmwebsphere_application_serverMatch8.5.5.6
Related
ibm
ibm
Security Bulletin: Vulnerability in IBM WebSphere Application Server affects Tivoli Business Service Manager (CVE-2015-4938)
2018-06-17 15:08:28
prion
prion
Information disclosure
2015-08-22 23:59:00
cvelist
cvelist
CVE-2015-4938
2015-08-22 23:00:00
nvd
nvd
CVE-2015-4938
2015-08-22 23:59:05
openvas
openvas
IBM Websphere Application Server Multiple Vulnerabilities-01 (Feb 2016)
2016-02-16 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
8 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.2%
Related for CVE-2015-4938