9.0.0.0

CVSS 5.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

high complexity

ibm

NVD

Published: 2024-08-14

Updated: 2024-09-11

Summary

IBM WebSphere Application Server 8.5 and 9.0 could allow an attacker with access to the network to conduct spoofing attacks. An attacker could exploit this vulnerability using a certificate issued by a trusted authority to obtain sensitive information. IBM X-Force ID: 274714.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Websphere Application Server 9.0.0.0 IBM Websphere Application Server 8.5.0.0	2

References

https://www.ibm.com/support/pages/node/7165511
https://exchange.xforce.ibmcloud.com/vulnerabilities/274714