Vulnerabilities > IBM > Websphere Application Server > 9.0.5.0

DATE CVE VULNERABILITY TITLE RISK
2019-09-17 CVE-2019-4477 Improper Privilege Management vulnerability in IBM Websphere Application Server
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a user with access to audit logs to obtain sensitive information, caused by improper handling of command line options.
network
low complexity
ibm CWE-269
6.5
6.5
2019-09-17 CVE-2019-4442 Path Traversal vulnerability in IBM Websphere Application Server
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9,0 could allow a remote attacker to traverse directories on the file system.
network
low complexity
ibm CWE-22
4.3
4.3
2019-09-17 CVE-2019-4270 Cross-site Scripting vulnerability in IBM Websphere Application Server
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Admin Console is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2019-09-17 CVE-2019-4268 Path Traversal vulnerability in IBM Websphere Application Server
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system.
network
low complexity
ibm CWE-22
5.3
5.3