DESCRIPTION: In Eclipse Parsson published Maven Central artifacts before version 1.1.8, the JSON parser did not enforce a default maximum on the number of characters consumed while parsing a single JSON document.Applications that parse attacker- controlled JSON can be forced to consume excessive CPU and memory...
DESCRIPTION: In Eclipse Parsson published Maven Central artifacts before version 1.1.8, the JSON parser did not enforce a default maximum on the number of characters consumed while parsing a single JSON document.Applications that parse attacker- controlled JSON can be forced to consume excessive CPU and memory...
DESCRIPTION: IBM WebSphere Application Server is affected by a cross-site request forgery, caused by improper validation of user-supplied input to the Administrative Console.By persuading an authenticated, privileged user to visit a malicious URL during a limited timing window, a remote attacker could send a specially-crafted request...
DESCRIPTION: IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to potential remote code execution due to deserialization of untrusted data via JAX-WS endpoints with WS-Security.
CWE: CWE-502:Deserialization of Untrusted Data[2]
...
DESCRIPTION: IBM WebSphere Application Server is vulnerable to server-side request forgery (SSRF) with the Ajax Proxy configured.This may allow an attacker to send unauthorized requests from the system, resulting in a security bypass or information disclosure.
CWE: CWE-918:Server-Side Request Forgery ...
Weitere Beiträge …
- PH71631:IBM WebSphere Liberty is affected by multiple vulnerabilities (CVE-2026-8646, CVE-2026-9320, CVE-2026-9071)
- PH71370:IBM WebSphere Application Server is affected by multiple vulnerabilities (CVE-2026-8646, CVE-2026-9320, CVE-2026-9071)
- IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by multiple vulnerabilities when using the Web Server Plug-ins (CVE-2026-9072, CVE-2026-8858, CVE-2026-10852)
- PH71342,PH71376:MULTIPLE VULNERABILITIES IN THE WEBSPHERE WEBSERVER PLUG-IN
Seite 1 von 52