CVE-2006-1619 — IBM Websphere Application Server vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.8%

top 25.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Websphere Application Server

Timeline

PublishedApr 5

Latest updateMay 1

Description

IBM WebSphere Application Server 4.0.1 through 4.0.3 allows remote attackers to cause a denial of service (application crash) via an HTTP request with a large header.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDibm/websphere_application_server4.0.1, 4.0.2, 4.0.3+2

🔴Vulnerability Details

GHSA

GHSA-j389-3jxj-44c7: IBM WebSphere Application Server 4↗2022-05-01

▶

CVEList

CVE-2006-1619: IBM WebSphere Application Server 4↗2006-04-05

▶