National Vulnerability Database

National Vulnerability Database

National Vulnerability

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:ibm:websphere_virtual_enterprise:
There are 2 matching records.
Vuln ID Summary CVSS Severity

IBM WebSphere Application Server 7.x before, 8.0.x before, and 8.5.x before and WebSphere Virtual Enterprise before allow remote attackers to obtain potentially sensitive information about the proxy-server software by reading the HTTP Via header.

Published: August 22, 2015; 07:59:01 PM -04:00
    V2: 5.0 MEDIUM

IBM WebSphere Application Server (WAS) 8.5 before, and WebSphere Virtual Enterprise 7.0 before for WebSphere Application Server (WAS) 7.0 and 8.0, does not properly implement user roles, which allows local users to gain privileges via unspecified vectors.

Published: July 14, 2015; 01:59:02 PM -04:00
    V2: 4.4 MEDIUM