vulnerability
IBM WebSphere Application Server: CVE-2017-1741: Information disclosure in WebSphere Application Server Admin Console (CVE-2017-1741)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:P/I:N/A:N) | Mar 13, 2018 | Apr 27, 2018 | Aug 11, 2025 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:P/I:N/A:N)
Published
Mar 13, 2018
Added
Apr 27, 2018
Modified
Aug 11, 2025
Description
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to obtain sensitive information caused by improper handling of Administrative Console panel fields. When exploited an attacker could read files on the file system. IBM X-Force ID: 134931.
Solutions
ibm-was-install-7-0-0-0-pi90042ibm-was-install-8-0-0-0-pi90042ibm-was-install-8-5-0-0-pi90042ibm-was-install-9-0-0-0-pi90042ibm-was-upgrade-7-0-0-0-7-0-0-45ibm-was-upgrade-8-0-0-0-8-0-0-15ibm-was-upgrade-8-5-0-0-8-5-5-14ibm-was-upgrade-9-0-0-0-9-0-0-7
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.