The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of IBM WebSphere Application Server Liberty

WebSphere AS: memory leak
An attacker can create a memory leak of WebSphere AS, in order to trigger a denial of service...
1285372, 2892021, 3380121, 3510741, CERTFR-2020-AVI-066, CVE-2019-4720, VIGILANCE-VUL-31477
Swagger UI: information disclosure via RPO Input Field Value Exfiltration
An attacker can bypass access restrictions to data via RPO Input Field Value Exfiltration of Swagger UI, in order to obtain sensitive information...
1274596, CVE-2019-17495, VIGILANCE-VUL-31380
WebSphere AS: denial of service via Request Headers
An attacker can trigger a fatal error via Request Headers of WebSphere AS, in order to trigger a denial of service...
1107597, CVE-2019-4046, VIGILANCE-VUL-31200
WebSphere AS Liberty: Cross Site Scripting via Web UI
An attacker can trigger a Cross Site Scripting via Web UI of WebSphere AS Liberty, in order to run JavaScript code in the context of the web site...
1127367, CVE-2019-4663, VIGILANCE-VUL-31131
Apache Commons Compress: infinite loop via File Name Encoding
An attacker can trigger an infinite loop via File Name Encoding of Apache Commons Compress, in order to trigger a denial of service...
1074156, CVE-2019-12402, FEDORA-2019-c96a8d12b0, VIGILANCE-VUL-30732
WebSphere AS: information disclosure via Stack Trace
An attacker can bypass access restrictions to data via Stack Trace of WebSphere AS, in order to obtain sensitive information...
1079031, 3380121, 5695611, 5695629, 5695653, 959023, CVE-2019-4441, VIGILANCE-VUL-30491
IBM WebSphere Application Server Liberty: two vulnerabilities
An attacker can use several vulnerabilities of IBM WebSphere Application Server Liberty...
5695611, 5695629, 5695653, 960171, CVE-2019-4304, CVE-2019-4305, VIGILANCE-VUL-30458
WebSphere AS Liberty Admin Center: information disclosure via Clickjacking
An attacker can bypass access restrictions to data via Clickjacking of WebSphere AS Liberty Admin Center, in order to obtain sensitive information...
CVE-2019-4285, ibm10884064, VIGILANCE-VUL-29890
Oracle Java: vulnerabilities of April 2019
Several vulnerabilities were announced in Oracle products...
CERTFR-2019-AVI-174, cpuapr2019, CVE-2019-2602, CVE-2019-2684, CVE-2019-2697, CVE-2019-2698, CVE-2019-2699, DLA-1782-1, DSA-2019-117, DSA-2020-072, DSA-4453-1, FEDORA-2019-265e0b1282, FEDORA-2019-5557661da8, FEDORA-2019-892e8e206e, FEDORA-2019-a8996fb898, FEDORA-2019-c701e6605a, FEDORA-2019-ca4ee3510d, FEDORA-2019-ec644ec323, FEDORA-2019-f2dfd17192, ibm10883126, ibm10884534, ibm10884536, ibm10884590, NTAP-20190423-0003, openSUSE-SU-2019:1327-1, openSUSE-SU-2019:1438-1, openSUSE-SU-2019:1439-1, openSUSE-SU-2019:1500-1, RHSA-2019:0774-01, RHSA-2019:0775-01, RHSA-2019:0778-01, RHSA-2019:0790-01, RHSA-2019:0791-01, RHSA-2019:1146-01, RHSA-2019:1163-01, RHSA-2019:1164-01, RHSA-2019:1165-01, RHSA-2019:1166-01, RHSA-2019:1238-01, RHSA-2019:1518-01, SB10285, SUSE-SU-2019:1052-1, SUSE-SU-2019:1211-2, SUSE-SU-2019:1219-1, SUSE-SU-2019:1308-1, SUSE-SU-2019:1308-2, SUSE-SU-2019:1345-1, SUSE-SU-2019:1392-1, SUSE-SU-2019:14059-1, SUSE-SU-2019:1644-1, USN-3975-1, VIGILANCE-VUL-29049
WebSphere AS: privilege escalation via Spoof Connection Information
An attacker can bypass restrictions via Spoof Connection Information of WebSphere AS, in order to escalate his privileges...
CVE-2018-1902, ibm10795115, ibm10876438, ibm10877000, ibm10884082, swg27048591, VIGILANCE-VUL-28690
Our database contains other pages. You can request a free trial to read them.

Display information about IBM WebSphere Application Server Liberty: