Vulnerabilities > IBM > Websphere Application Server > 9.0.5.4

DATE CVE VULNERABILITY TITLE RISK
2020-06-05 CVE-2020-4450 Deserialization of Untrusted Data vulnerability in IBM Websphere Application Server
IBM WebSphere Application Server 8.5 and 9.0 traditional could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects.
network
low complexity
ibm CWE-502
critical
 9.8
9.8
2020-06-05 CVE-2020-4449 Deserialization of Untrusted Data vulnerability in IBM Websphere Application Server
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional could allow a remote attacker to obtain sensitive information with a specially-crafted sequence of serialized objects.
network
low complexity
ibm CWE-502
7.5
7.5
2020-06-05 CVE-2020-4448 Deserialization of Untrusted Data vulnerability in IBM products
IBM WebSphere Application Server Network Deployment 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources.
network
low complexity
ibm CWE-502
critical
 9.8
9.8