CVE-2006-5324 — IBM Websphere Application Server vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

0.5%

top 34.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Websphere Application Server

Timeline

PublishedOct 17

Latest updateMay 1

Description

The Web Services Notification (WSN) security component of IBM WebSphere Application Server before 6.1.0.2 allows attackers to obtain unspecified access without supplying a username and password, aka PK28374.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDibm/websphere_application_server6.1.0.1

Patches

Patch: secunia.com ↗Patch: www-1.ibm.com ↗Patch: www-1.ibm.com ↗

🔴Vulnerability Details

GHSA

GHSA-w5vj-96q3-f4x4: The Web Services Notification (WSN) security component of IBM WebSphere Application Server before 6↗2022-05-01

▶

CVEList

CVE-2006-5324: The Web Services Notification (WSN) security component of IBM WebSphere Application Server before 6↗2006-10-17

▶