CVE-2013-6325Improper Input Validation in IBM Websphere Application Server

CWE-20Improper Input Validation3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.9%
top 23.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Websphere Application Server
Timeline
PublishedJan 16
Latest updateMay 17

Description

IBM WebSphere Application Server 7.x before 7.0.0.31, 8.0.x before 8.0.0.8, and 8.5.x before 8.5.5.2 allows remote attackers to cause a denial of service (resource consumption) via a crafted request to a web services endpoint.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-87c8-xpwx-4xvr: IBM WebSphere Application Server 72022-05-17
CVEList
CVE-2013-6325: IBM WebSphere Application Server 72014-01-16
CVE-2013-6325 — Improper Input Validation in IBM | cvebase