vulnerability
IBM WebSphere Application Server: CVE-2022-43917: IBM WebSphere Application Server traditional container is vulnerable to information disclosure
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
8 | (AV:N/AC:L/Au:N/C:C/I:N/A:N) | 2023-01-26 | 2023-07-27 | 2025-01-28 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:C/I:N/A:N)
Published
2023-01-26
Added
2023-07-27
Modified
2025-01-28
Description
IBM WebSphere Application Server 8.5 and 9.0 traditional container uses weaker than expected cryptographic keys that could allow an attacker to decrypt sensitive information. This affects only the containerized version of WebSphere Application Server traditional. IBM X-Force ID: 241045.
Solution(s)
ibm-was-upgrade-8-5-5-17-8-5-5-23ibm-was-upgrade-9-0-0-9-9-0-5-15

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.