CVE-2002-1822

3 documents3 sources
Severity
5.0MEDIUM
EPSS
0.3%
top 49.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Http Server
Timeline
PublishedDec 31
Latest updateApr 30

Description

IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain the path to the web root directory and other sensitive information, which is leaked in an error mesage when a request is made for a non-existent Java Server Page (JSP).

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-v452-hw9p-xrxq: IBM HTTP Server 12022-04-30
CVEList
CVE-2002-1822: IBM HTTP Server 12005-06-28
CVE-2002-1822 (MEDIUM CVSS 5) | IBM HTTP Server 1.0 on AS/400 allow | cvebase.io