IBM WebSphere Application Server 7.0, 8.0, and 8.5 is vulnerable to server-side request forgery (SSRF). By sending a specially crafted request, a remote authenticated attacker could exploit this vulnerability to obtain sensitive data. IBM X-Force ID: 197502.
References
Link | Resource |
---|---|
https://www.ibm.com/support/pages/node/6441063 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/197502 | VDB Entry Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2021-04-08 06:15
Updated : 2021-04-12 20:57
NVD link : CVE-2021-20480
Mitre link : CVE-2021-20480
JSON object : View
CWE
CWE-918
Server-Side Request Forgery (SSRF)
Products Affected
microsoft
- windows
ibm
- aix
- i
- z\/os
- websphere_application_server
hp
- hp-ux
linux
- linux_kernel
oracle
- solaris