Vulnerabilities > CVE-2023-50313 - Unspecified vulnerability in IBM Websphere Application Server 8.5/9.0

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

low complexity

ibm

NVD

Published: 2024-04-02

Updated: 2024-11-21

Summary

IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security for outbound TLS connections caused by a failure to honor user configuration. IBM X-Force ID: 274812.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Websphere Application Server 9.0 IBM Websphere Application Server 8.5	2

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/274812
https://exchange.xforce.ibmcloud.com/vulnerabilities/274812
https://www.ibm.com/support/pages/node/7145620
https://www.ibm.com/support/pages/node/7145620