vulnerability
IBM WebSphere Application Server: CVE-2020-4329: Information disclosure in WebSphere Application Server
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:P/I:N/A:N) | Apr 28, 2020 | May 26, 2020 | Nov 26, 2024 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:P/I:N/A:N)
Published
Apr 28, 2020
Added
May 26, 2020
Modified
Nov 26, 2024
Description
IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0 and Liberty 17.0.0.3 through 20.0.0.4 could allow a remote, authenticated attacker to obtain sensitive information, caused by improper parameter checking. This could be exploited to conduct spoofing attacks. IBM X-Force ID: 177841.
Solutions
ibm-was-install-17-0-0-3-ph20847-libertyibm-was-install-7-0-0-0-ph20847ibm-was-install-8-0-0-0-ph20847ibm-was-install-8-5-0-0-ph20847ibm-was-install-9-0-0-0-ph20847ibm-was-upgrade-17-0-0-3-20-0-0-5-libertyibm-was-upgrade-8-5-0-0-8-5-5-18ibm-was-upgrade-9-0-0-0-9-0-5-4
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.