Vulnerability in Ibm Websphere_application_server
CVE-2013-0482
IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.29, 8.0 before 8.0.0.6, and 8.5 through 8.5.0.2 and WebSphere Message Broker 6.1, 7.0 through 7.0.0.5, and 8.0 through 8.0.0.2, when WS-Security is used, allows remote attackers to sp…
EPSS: 0.006 (70.2th percentile) — read the EPSS interpretation.
Affected products
- Ibm Websphere_application_server — versions 7.0, 7.0.0.1, 7.0.0.2
- Ibm Websphere_message_broker — versions 6.1, 7.0., 7.0.0.1
- N/a — versions n/a
References
- PM76582 (vendor-advisory, x_refsource_AIXAPAR)
- psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
- IC88185 (vendor-advisory, x_refsource_AIXAPAR)
- PM86026 (vendor-advisory, x_refsource_AIXAPAR)
- psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
- was-wssecurity-spoofing(81548) (vdb-entry, x_refsource_XF)