CVE-2008-5414 — IBM Websphere Application Server vulnerability

4 documents4 sources

Severity

10.0CRITICALNVD

EPSS

1.3%

top 20.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Websphere Application Server

Timeline

PublishedDec 10

Latest updateMay 17

Description

Unspecified vulnerability in the Feature Pack for Web Services in the Web Services Security component in IBM WebSphere Application Server (WAS) 7 before 7.0.0.1 has unknown impact and attack vectors related to "userNameToken."

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDibm/websphere_application_server7.0

Patches

Patch: secunia.com ↗Patch: www-01.ibm.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-xjf9-wc3g-c2mh: Unspecified vulnerability in the Feature Pack for Web Services in the Web Services Security component in IBM WebSphere Application Server (WAS) 7 befo↗2022-05-17

▶

CVEList

CVE-2008-5414: Unspecified vulnerability in the Feature Pack for Web Services in the Web Services Security component in IBM WebSphere Application Server (WAS) 7 befo↗2008-12-10

▶

💥Exploits & PoCs

Exploit-DB

Cobalt 0.1 - Multiple SQL Injections↗2008-04-05

▶