Search Results (Refine Search)

Search Parameters:
  • CPE Product Version: cpe:/a:ibm:websphere_virtual_enterprise:
There are 2 matching records.
Displaying matches 1 through 2.
Vuln ID Summary CVSS Severity

IBM WebSphere Application Server 7.x before, 8.0.x before, and 8.5.x before and WebSphere Virtual Enterprise before allow remote attackers to obtain potentially sensitive information about the proxy-server software by reading the HTTP Via header.

Published: August 22, 2015; 7:59:01 PM -0400
V3.x:(not available)
V2.0: 5.0 MEDIUM

IBM WebSphere Application Server (WAS) 8.5 before, and WebSphere Virtual Enterprise 7.0 before for WebSphere Application Server (WAS) 7.0 and 8.0, does not properly implement user roles, which allows local users to gain privileges via unspecified vectors.

Published: July 14, 2015; 1:59:02 PM -0400
V3.x:(not available)
V2.0: 4.4 MEDIUM