We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Assigner | ibm |
Reserved | 2024-05-09 |
Published | 2024-07-09 |
Updated | 2024-08-02 |
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote authenticated attacker, who has authorized access to the administrative console, to execute arbitrary code. Using specially crafted input, the attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 292641.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
CWE-250 Execution with Unnecessary Privileges
Kin Hung Cheng
https://www.ibm.com/support/pages/node/7159825
https://exchange.xforce.ibmcloud.com/vulnerabilities/292641