Lucene search
IBM1AFAEA5C5F4B46AA3B2C5CA93EE062A1E8CE0DB25F687322C578A8B11458B9A6HistoryJun 15, 2018 - 7:07 a.m.
Security Bulletin: A Security vulnerability has been identified in IBM WebSphere Application Server bundled with IBM WebSphere Application Server Patterns and IBM WebSphere Application Server for Cloud (CVE-2016-1151)
2018-06-1507:07:11
www.ibm.com
9
EPSS
0.003
Percentile
68.9%
Summary
There is a potential privilege escalation vulnerability in traditional WebSphere Application Server shipped with WebSphere Patterns when using the OpenID Connect (OIDC) Trust Association Interceptor (TAI). This does not affect WebSphere Application Server Liberty.
Vulnerability Details
Consult the security bulletin: Security Bulletin: Privilege Escalation Vulnerability in WebSphere Application Server (CVE-2017-1151) for vulnerability details and information about fixes.
Affected Products and Versions
This vulnerability affects the following versions and releases of IBM WebSphere Application Server:
- Version 9.0
- Version 8.5
- Version 8.0
Related
prion
prion
Cross site request forgery (csrf)
2016-02-17 02:59:00
Code injection
2017-03-20 16:59:00
nvd
nvd
CVE-2016-1151
2016-02-17 02:59:12
CVE-2017-1151
2017-03-20 16:59:02
cvelist
cvelist
CVE-2016-1151
2016-02-17 02:00:00
CVE-2017-1151
2017-03-20 16:00:00
cve
cve
CVE-2016-1151
2016-02-17 02:59:12
CVE-2017-1151
2017-03-20 16:59:02
jvn
jvn
JVN#64209269: Cybozu Office vulnerable to cross-site request forgery
2016-02-15 00:00:00
ibm
ibm
nessus
nessus
openvas
openvas
IBM Websphere Application Server Remote Privilege Escalation Vulnerability
2017-08-04 00:00:00
Cybozu Office 9.9.0 - 10.3.0 Multiple Vulnerabilities
2016-03-03 00:00:00
EPSS
0.003
Percentile
68.9%
Related for 1AFAEA5C5F4B46AA3B2C5CA93EE062A1E8CE0DB25F687322C578A8B11458B9A6