CVE-2019-4304
Medium
Low
Medium
High
Critical
6.3
CVSS Score
Vulnerability Description
IBM WebSphere Application Server - Liberty could allow a remote attacker to bypass security restrictions caused by improper session validation. IBM X-Force ID: 160950.
CVSS Metrics
Common Vulnerability Scoring System
Vector String:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Attack Vector
N
Attack Complexity
L
Privileges Required
L
User Interaction
N
Scope
U
Confidentiality
L
Integrity
L
Availability
L
Known Affected Software
282 configuration(s) from 1 vendor(s)
websphere_application_server
Version:
7.0.0.11
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.11:*:*:*:-:*:*:*
websphere_application_server
Version:
7.0.0.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.7:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.32
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.32:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.11
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.11:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.3:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.43
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.43:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.27
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.27:*:*:*:-:*:*:*
websphere_application_server
Version:
9.0.0.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.0:*:*:*:traditional:*:*:*
websphere_application_server
Version:
6.1.14
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.14:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.4:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.11
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.11:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.13
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.13:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.5:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.5.15
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.15:*:*:*:-:*:*:*
websphere_application_server
Version:
6.1.0.17
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.17:*:*:*:*:*:*:*
websphere_application_server
Version:
3.5.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.5.2:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.14
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.14:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.33
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.33:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5:*:*:*:traditional:*:*:*
websphere_application_server
Version:
7.0.0.45
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.45:*:*:*:-:*:*:*
websphere_application_server
Version:
5.0.2.10
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.10:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.37
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.37:*:*:*:-:*:*:*
websphere_application_server
Version:
7.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.2:*:lombardi:*:*:*:*:*
websphere_application_server
Version:
7.0.0.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.5:*:*:*:-:*:*:*
websphere_application_server
Version:
8.5.5.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.0:-:liberty_profile:*:*:*:*:*
websphere_application_server
Version:
7.0.0.18
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.18:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.35
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.35:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.0:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.0:*:*:*:-:*:*:*
websphere_application_server
Version:
5.1.1.16
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.16:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.1.11
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.1.11:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.35
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.35:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.8
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.8:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.4:-:*:*:liberty:*:*:*
websphere_application_server
Version:
7.0.0.22
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.22:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.15
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.15:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:*:*:*:*:*:*:*
websphere_application_server
Version:
19.0.0.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:19.0.0.7:*:*:*:liberty:*:*:*
websphere_application_server
Version:
6.0.2.27
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.27:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.1:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.16
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.16:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.25
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.25:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.15
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.15:*:*:*:-:*:*:*
websphere_application_server
Version:
8.5.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.0.1:-:liberty_profile:*:*:*:*:*
websphere_application_server
Version:
8.5.5.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.1:-:liberty_profile:*:*:*:*:*
websphere_application_server
Version:
9.0.0.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.4:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.0.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.5:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.2:-:liberty_profile:*:*:*:*:*
websphere_application_server
Version:
7.0.0.21
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.21:*:*:*:-:*:*:*
websphere_application_server
Version:
9.0.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.3:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.3:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.23
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.23:*:*:*:-:*:*:*
websphere_application_server
Version:
3.0.2.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.0.2.1:*:*:*:*:*:*:*
websphere_application_server
Version:
5.02.15
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.02.15:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.41
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.41:*:*:*:-:*:*:*
websphere_application_server
Version:
6.0.2.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.7:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.0:*:*:*:-:*:*:*
websphere_application_server
Version:
6.0.2.15
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.15:*:*:*:*:*:*:*
websphere_application_server
Version:
19.0.0.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:19.0.0.5:*:*:*:liberty:*:*:*
websphere_application_server
Version:
7.0.0.23
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.23:*:*:*:-:*:*:*
websphere_application_server
Version:
6.0.2.37
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.37:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.7:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.23
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.23:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.5:*:*:*:*:*:*:*
websphere_application_server
Version:
17.0.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:17.0.0.1:*:*:*:liberty:*:*:*
websphere_application_server
Version:
5.0.2.15
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.15:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.12
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.12:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.6
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.6:*:*:*:*:*:*:*
websphere_application_server
Version:
19.0.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:19.0.0.1:*:*:*:liberty:*:*:*
websphere_application_server
Version:
3.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.0:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.15
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.15:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.3:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.0.6
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.6:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.31
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.31:*:*:*:-:*:*:*
websphere_application_server
Version:
5.1.1.6
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.6:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.13
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.13:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.1.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.1.5:*:*:*:*:*:*:*
websphere_application_server
Version:
17.0.0.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:17.0.0.4:*:*:*:liberty:*:*:*
websphere_application_server
Version:
6.0.2.24
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.24:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.2:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.4:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.11
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.11:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.28
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.28:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.1:*:*:*:*:*:*:*
websphere_application_server
Version:
3.5.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.5.3:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.13
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.13:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.5.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.0:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.18
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.18:*:*:*:hypervisor:*:*:*
websphere_application_server
Version:
9.0.5.8
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.8:*:*:*:*:*:*:*
websphere_application_server
Version:
19.0.0.6
CPE:
cpe:2.3:a:ibm:websphere_application_server:19.0.0.6:*:*:*:liberty:*:*:*
websphere_application_server
Version:
5.0.2.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.3:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.0.11
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.11:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.10
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.10:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:*:*:*:*:*:*:*
websphere_application_server
Version:
3.52
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.52:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.1.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.1.1:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.2:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.7:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.3:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.20
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.20:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.17
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.17:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.0:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.1.15
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.1.15:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.5:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.13
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.13:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.1.13
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.1.13:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.13
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.13:*:*:*:*:*:*:*
websphere_application_server
Version:
19.0.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:19.0.0.2:*:*:*:liberty:*:*:*
websphere_application_server
Version:
6.1.0.33
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.33:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.27
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.27:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.25
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.25:*:*:*:traditional:*:*:*
websphere_application_server
Version:
6.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.1:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.13
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.13:*:*:*:*:*:*:*
websphere_application_server
Version:
16.0.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:16.0.0.2:*:*:*:liberty:*:*:*
websphere_application_server
Version:
6.0.1.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.1.3:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.7:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.2:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.39
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.39:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.11
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.11:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.38
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.38:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.37
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.37:*:*:*:*:*:*:*
websphere_application_server
Version:
19.0.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:19.0.0.3:*:*:*:liberty:*:*:*
websphere_application_server
Version:
7.0.0.10
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.10:*:*:*:*:*:*:*
websphere_application_server
Version:
4.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:4.0.2:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.17
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.17:*:*:*:-:*:*:*
websphere_application_server
Version:
8.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.1:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.29
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.29:*:*:*:-:*:*:*
websphere_application_server
Version:
17.0.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:17.0.0.3:*:*:*:liberty:*:*:*
websphere_application_server
Version:
8.5.5.8
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.8:*:*:*:liberty:*:*:*
websphere_application_server
Version:
8.0.0.6
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.6:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.39
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.39:*:*:*:-:*:*:*
websphere_application_server
Version:
5.1.1.9
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.9:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.43
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.43:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.43
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.43:*:*:*:-:*:*:*
websphere_application_server
Version:
16.0.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:16.0.0.3:*:*:*:liberty:*:*:*
websphere_application_server
Version:
9.0.5.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.5:*:*:*:hypervisor:*:*:*
websphere_application_server
Version:
6.0.1.9
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.1.9:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.23
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.23:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.5.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.4:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.1:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.7:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.45
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.45:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.19
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.19:*:*:*:-:*:*:*
websphere_application_server
Version:
6.0.2.13
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.13:*:*:*:*:*:*:*
websphere_application_server
Version:
16.0.0.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:16.0.0.4:*:*:*:liberty:*:*:*
websphere_application_server
Version:
6.1.0.47
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.47:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.0.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.7:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.25
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.25:*:*:*:*:*:*:*
websphere_application_server
Version:
4.0.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:4.0.4:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.39
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.39:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.14
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.14:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.15
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.15:*:*:*:*:*:*:*
websphere_application_server
Version:
17.0.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:17.0.0.2:*:*:*:liberty:*:*:*
websphere_application_server
Version:
6.1.0.41
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.41:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.31
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.31:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.1.17
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.1.17:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.29
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.29:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.5.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.7:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.19
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.19:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.7:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.5.6
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.6:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.0.8
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.8:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.1.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.1.7:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.10
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.10:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.6
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.6:-:*:*:liberty:*:*:*
websphere_application_server
Version:
5.0.2.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.4:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.17
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.17:*:*:*:*:*:*:*
websphere_application_server
Version:
19.0.0.9
CPE:
cpe:2.3:a:ibm:websphere_application_server:19.0.0.9:*:*:*:liberty:*:*:*
websphere_application_server
Version:
6.0.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.0.1:*:*:*:*:*:*:*
websphere_application_server
Version:
3.0.2.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.0.2.2:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.3:*:*:*:-:*:*:*
websphere_application_server
Version:
9.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.35
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.35:*:*:*:-:*:*:*
websphere_application_server
Version:
3.0.2.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.0.2.3:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.10
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.10:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.0.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.0.0:*:*:*:-:*:*:*
websphere_application_server
Version:
8.5.5.7
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.7:*:*:*:liberty:*:*:*
websphere_application_server
Version:
7.0.0.33
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.33:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.0.10
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.10:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.21
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.21:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.15
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.15:*:*:*:-:*:*:*
websphere_application_server
Version:
18.0.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:18.0.0.3:*:*:*:liberty:*:*:*
websphere_application_server
Version:
6.0.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.0.3:*:*:*:*:*:*:*
websphere_application_server
Version:
19.0.0.8
CPE:
cpe:2.3:a:ibm:websphere_application_server:19.0.0.8:*:*:*:liberty:*:*:*
websphere_application_server
Version:
8.5.5.22
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.22:*:*:*:-:*:*:*
websphere_application_server
Version:
6.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0:*:*:*:*:*:*:*
websphere_application_server
Version:
18.0.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:18.0.0.2:*:*:*:liberty:*:*:*
websphere_application_server
Version:
7.0.0.16
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.16:*:*:*:*:*:*:*
websphere_application_server
Version:
3.0.9.20
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.0.9.20:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.5.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.1:*:*:*:-:*:*:*
websphere_application_server
Version:
3.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.5:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.40
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.40:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.31
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.31:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.22
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.22:*:*:*:*:*:*:*
websphere_application_server
Version:
3.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.0.2:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.8
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.8:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.2:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.2:*:*:*:-:*:*:*
websphere_application_server
Version:
7.0.0.34
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.34:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.5:-:*:*:liberty:*:*:*
websphere_application_server
Version:
6.0.2.30
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.30:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.9
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.9:*:*:*:*:*:*:*
websphere_application_server
Version:
4.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:4.0.1:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.16
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.16:*:*:*:-:*:*:*
websphere_application_server
Version:
7.0.0.36
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.36:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.4:*:*:*:*:*:*:*
websphere_application_server
Version:
7.2.0.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.2.0.0:*:*:*:lombardi:*:*:*
websphere_application_server
Version:
7.0.0.13
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.13:*:*:*:-:*:*:*
websphere_application_server
Version:
3.0.21
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.0.21:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.1:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.11
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.11:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.5:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.0.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.0.4:*:*:*:*:*:*:*
websphere_application_server
Version:
18.0.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:18.0.0.1:*:*:*:liberty:*:*:*
websphere_application_server
Version:
8.0.0.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.5:*:*:*:*:*:*:*
websphere_application_server
Version:
7.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.1:*:*:*:lombardi:*:*:*
websphere_application_server
Version:
6.0.2.8
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.8:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.9
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.9:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.5.16
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.16:*:*:*:-:*:*:*
websphere_application_server
Version:
5.1.1.14
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.14:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.9
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.9:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.41
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.41:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.0.2:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.25
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.25:*:*:*:-:*:*:*
websphere_application_server
Version:
9.0.5.19
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.19:*:*:*:traditional:*:*:*
websphere_application_server
Version:
8.0.0.14
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.14:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.6
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.6:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.14
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.14:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.0.5
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.0.5:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.9
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.9:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.32
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.32:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.2:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.9
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.9:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.19
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.19:*:*:*:*:*:*:*
websphere_application_server
Version:
3.5.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.5.1:*:*:*:*:*:*:*
websphere_application_server
Version:
3.0.2.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.0.2.4:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.8
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.8:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.12
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.12:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.0.2:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.11
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.11:*:*:*:*:*:*:*
websphere_application_server
Version:
4.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:4.0.3:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2.6
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2.6:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.19
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.19:*:*:*:*:*:*:*
websphere_application_server
Version:
19.0.0.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:19.0.0.4:*:*:*:liberty:*:*:*
websphere_application_server
Version:
6.0.2.17
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.17:*:*:*:*:*:*:*
websphere_application_server
Version:
3.0.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:3.0.0.3:-:community:*:*:*:*:*
websphere_application_server
Version:
8.5.5.9
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.9:*:*:*:liberty:*:*:*
websphere_application_server
Version:
5.1.0.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.0.3:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.12
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.12:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1.12
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1.12:*:*:*:*:*:*:*
websphere_application_server
Version:
2.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:2.0:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.6
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.6:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.1:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.0.2:-:liberty_profile:*:*:*:*:*
websphere_application_server
Version:
5.0.0
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.0:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.5.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.2:*:*:*:*:*:*:*
websphere_application_server
Version:
5.0.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.0.2:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.24
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.24:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.1:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.5.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.5.3:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.4:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.8
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.8:*:*:*:*:*:*:*
websphere_application_server
Version:
18.0.0.4
CPE:
cpe:2.3:a:ibm:websphere_application_server:18.0.0.4:*:*:*:liberty:*:*:*
websphere_application_server
Version:
6.0.1.2
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.1.2:*:*:*:*:*:*:*
websphere_application_server
Version:
9.0.0.9
CPE:
cpe:2.3:a:ibm:websphere_application_server:9.0.0.9:*:*:*:*:*:*:*
websphere_application_server
Version:
6.1.0.29
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.1.0.29:*:*:*:*:*:*:*
websphere_application_server
Version:
5.1.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:5.1.1:*:*:*:*:*:*:*
websphere_application_server
Version:
8.5.5.12
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.5.5.12:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.14
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.14:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.1
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.1:*:*:*:-:*:*:*
websphere_application_server
Version:
7.0.0.24
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.24:*:*:*:*:*:*:*
websphere_application_server
Version:
7.0.0.42
CPE:
cpe:2.3:a:ibm:websphere_application_server:7.0.0.42:*:*:*:*:*:*:*
websphere_application_server
Version:
8.0.0.12
CPE:
cpe:2.3:a:ibm:websphere_application_server:8.0.0.12:*:*:*:*:*:*:*
websphere_application_server
Version:
6.0.2.3
CPE:
cpe:2.3:a:ibm:websphere_application_server:6.0.2.3:*:*:*:*:*:*:*
This vulnerability affects 282 software configuration(s). Ensure you patch all affected systems.
References & Resources
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/160950psirt@us.ibm.com VDB Entry Vendor Advisory
-
https://www.ibm.com/support/pages/node/960171psirt@us.ibm.com Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/160950af854a3a-2127-422b-91ae-364da2661108 VDB Entry Vendor Advisory
-
https://www.ibm.com/support/pages/node/960171af854a3a-2127-422b-91ae-364da2661108 Vendor Advisory
Severity Details
6.3
out of 10.0
Medium
Weakness Type (CWE)
CWE-384
Session Fixation
- Description
- Authenticating a user, or otherwise establishing a new user session, without invalidating any existing session identifier gives an attacker the opportunity to steal authenticated sessions.
- Typical Severity
- High
- Abstraction Level
- Compound
Key Information
- Published Date
- September 30, 2019
