Lucene search
HistoryOct 05, 2016 - 10:59 a.m.
CVE-2016-5983
ibm
websphere application server
was
vulnerability
cve-2016-5983
remote code execution
java
nvd
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.015 Low
EPSS
Percentile
87.1%
IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 before 8.5.5.11, 9.0 before 9.0.0.2, and Liberty before 16.0.0.4 allows remote authenticated users to execute arbitrary Java code via a crafted serialized object.
Affected configurations
Node
ibmwebsphere_application_serverMatch7.0
ORibmwebsphere_application_serverMatch7.0.0.0
ORibmwebsphere_application_serverMatch7.0.0.1
ORibmwebsphere_application_serverMatch7.0.0.2
ORibmwebsphere_application_serverMatch7.0.0.3
ORibmwebsphere_application_serverMatch7.0.0.4
ORibmwebsphere_application_serverMatch7.0.0.5
ORibmwebsphere_application_serverMatch7.0.0.6
ORibmwebsphere_application_serverMatch7.0.0.7
ORibmwebsphere_application_serverMatch7.0.0.8
ORibmwebsphere_application_serverMatch7.0.0.9
ORibmwebsphere_application_serverMatch7.0.0.10
ORibmwebsphere_application_serverMatch7.0.0.11
ORibmwebsphere_application_serverMatch7.0.0.12
ORibmwebsphere_application_serverMatch7.0.0.13
ORibmwebsphere_application_serverMatch7.0.0.14
ORibmwebsphere_application_serverMatch7.0.0.15
ORibmwebsphere_application_serverMatch7.0.0.16
ORibmwebsphere_application_serverMatch7.0.0.17
ORibmwebsphere_application_serverMatch7.0.0.18
ORibmwebsphere_application_serverMatch7.0.0.19
ORibmwebsphere_application_serverMatch7.0.0.21
ORibmwebsphere_application_serverMatch7.0.0.22
ORibmwebsphere_application_serverMatch7.0.0.23
ORibmwebsphere_application_serverMatch7.0.0.24
ORibmwebsphere_application_serverMatch7.0.0.25
ORibmwebsphere_application_serverMatch7.0.0.27
ORibmwebsphere_application_serverMatch7.0.0.28
ORibmwebsphere_application_serverMatch7.0.0.29
ORibmwebsphere_application_serverMatch7.0.0.31
ORibmwebsphere_application_serverMatch7.0.0.32
ORibmwebsphere_application_serverMatch7.0.0.33
ORibmwebsphere_application_serverMatch7.0.0.34
ORibmwebsphere_application_serverMatch7.0.0.35
ORibmwebsphere_application_serverMatch7.0.0.36
ORibmwebsphere_application_serverMatch7.0.0.37
ORibmwebsphere_application_serverMatch7.0.0.38
ORibmwebsphere_application_serverMatch7.0.0.39
ORibmwebsphere_application_serverMatch7.0.0.41
ORibmwebsphere_application_serverMatch8.0
ORibmwebsphere_application_serverMatch8.0.0.0
ORibmwebsphere_application_serverMatch8.0.0.1
ORibmwebsphere_application_serverMatch8.0.0.2
ORibmwebsphere_application_serverMatch8.0.0.3
ORibmwebsphere_application_serverMatch8.0.0.4
ORibmwebsphere_application_serverMatch8.0.0.5
ORibmwebsphere_application_serverMatch8.0.0.6
ORibmwebsphere_application_serverMatch8.0.0.7
ORibmwebsphere_application_serverMatch8.0.0.8
ORibmwebsphere_application_serverMatch8.0.0.9
ORibmwebsphere_application_serverMatch8.0.0.10
ORibmwebsphere_application_serverMatch8.0.0.11
ORibmwebsphere_application_serverMatch8.0.0.12
ORibmwebsphere_application_serverMatch8.5.0.0
ORibmwebsphere_application_serverMatch8.5.0.0-liberty_profile
ORibmwebsphere_application_serverMatch8.5.0.1-liberty_profile
ORibmwebsphere_application_serverMatch8.5.0.2-liberty_profile
ORibmwebsphere_application_serverMatch8.5.5.0-liberty_profile
ORibmwebsphere_application_serverMatch8.5.5.1-liberty_profile
ORibmwebsphere_application_serverMatch8.5.5.2-liberty_profile
ORibmwebsphere_application_serverMatch8.5.5.4
ORibmwebsphere_application_serverMatch8.5.5.5
ORibmwebsphere_application_serverMatch8.5.5.6
ORibmwebsphere_application_serverMatch8.5.5.7
ORibmwebsphere_application_serverMatch8.5.5.8
ORibmwebsphere_application_serverMatch8.5.5.9
ORibmwebsphere_application_serverMatch9.0.0.0
Node
ibmwebsphere_application_serverMatch7.0
ORibmwebsphere_application_serverMatch7.0.0.0
ORibmwebsphere_application_serverMatch7.0.0.1
ORibmwebsphere_application_serverMatch7.0.0.2
ORibmwebsphere_application_serverMatch7.0.0.3
ORibmwebsphere_application_serverMatch7.0.0.4
ORibmwebsphere_application_serverMatch7.0.0.5
ORibmwebsphere_application_serverMatch7.0.0.6
ORibmwebsphere_application_serverMatch7.0.0.7
ORibmwebsphere_application_serverMatch7.0.0.8
ORibmwebsphere_application_serverMatch7.0.0.9
ORibmwebsphere_application_serverMatch7.0.0.10
ORibmwebsphere_application_serverMatch7.0.0.11
ORibmwebsphere_application_serverMatch7.0.0.12
ORibmwebsphere_application_serverMatch7.0.0.13
ORibmwebsphere_application_serverMatch7.0.0.14
ORibmwebsphere_application_serverMatch7.0.0.15
ORibmwebsphere_application_serverMatch7.0.0.16
ORibmwebsphere_application_serverMatch7.0.0.17
ORibmwebsphere_application_serverMatch7.0.0.18
ORibmwebsphere_application_serverMatch7.0.0.19
ORibmwebsphere_application_serverMatch7.0.0.21
ORibmwebsphere_application_serverMatch7.0.0.22
ORibmwebsphere_application_serverMatch7.0.0.23
ORibmwebsphere_application_serverMatch7.0.0.24
ORibmwebsphere_application_serverMatch7.0.0.25
ORibmwebsphere_application_serverMatch7.0.0.27
ORibmwebsphere_application_serverMatch7.0.0.28
ORibmwebsphere_application_serverMatch7.0.0.29
ORibmwebsphere_application_serverMatch7.0.0.31
ORibmwebsphere_application_serverMatch7.0.0.32
ORibmwebsphere_application_serverMatch7.0.0.33
ORibmwebsphere_application_serverMatch7.0.0.34
ORibmwebsphere_application_serverMatch7.0.0.35
ORibmwebsphere_application_serverMatch7.0.0.36
ORibmwebsphere_application_serverMatch7.0.0.37
ORibmwebsphere_application_serverMatch7.0.0.38
ORibmwebsphere_application_serverMatch7.0.0.39
ORibmwebsphere_application_serverMatch7.0.0.41
ORibmwebsphere_application_serverMatch8.0
ORibmwebsphere_application_serverMatch8.0.0.0
ORibmwebsphere_application_serverMatch8.0.0.1
ORibmwebsphere_application_serverMatch8.0.0.2
ORibmwebsphere_application_serverMatch8.0.0.3
ORibmwebsphere_application_serverMatch8.0.0.4
ORibmwebsphere_application_serverMatch8.0.0.5
ORibmwebsphere_application_serverMatch8.0.0.6
ORibmwebsphere_application_serverMatch8.0.0.7
ORibmwebsphere_application_serverMatch8.0.0.8
ORibmwebsphere_application_serverMatch8.0.0.9
ORibmwebsphere_application_serverMatch8.0.0.10
ORibmwebsphere_application_serverMatch8.0.0.11
ORibmwebsphere_application_serverMatch8.0.0.12
ORibmwebsphere_application_serverMatch8.5.0.0
ORibmwebsphere_application_serverMatch8.5.0.0-liberty_profile
ORibmwebsphere_application_serverMatch8.5.0.1-liberty_profile
ORibmwebsphere_application_serverMatch8.5.0.2-liberty_profile
ORibmwebsphere_application_serverMatch8.5.5.0-liberty_profile
ORibmwebsphere_application_serverMatch8.5.5.1-liberty_profile
ORibmwebsphere_application_serverMatch8.5.5.2-liberty_profile
ORibmwebsphere_application_serverMatch8.5.5.4
ORibmwebsphere_application_serverMatch8.5.5.5
ORibmwebsphere_application_serverMatch8.5.5.6
ORibmwebsphere_application_serverMatch8.5.5.7
ORibmwebsphere_application_serverMatch8.5.5.8
ORibmwebsphere_application_serverMatch8.5.5.9
ORibmwebsphere_application_serverMatch8.5.5.10
ORibmwebsphere_application_serverMatch9.0.0.0
ORibmwebsphere_application_serverMatch9.0.0.1
Related
ibm
ibm
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server affecting IBM Tivoli Storage Manager FastBack Reporting (CVE-2016-5983)
2018-06-17 15:31:32
openvas
openvas
IBM Websphere Application Server Code Execution vulnerability (Oct 2016)
2016-10-13 00:00:00
cvelist
cvelist
CVE-2016-5983
2016-10-05 10:00:00
prion
prion
Code injection
2016-10-05 10:59:00
checkpoint_advisories
checkpoint_advisories
nvd
nvd
CVE-2016-5983
2016-10-05 10:59:18
nessus
nessus
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
7.6 High
AI Score
Confidence
High
0.015 Low
EPSS
Percentile
87.1%
Related for CVE-2016-5983