CVE-2020-4421
published 2020-05-06CVE-2020-4421: IBM WebSphere Application Liberty 19.0.0.5 through 20.0.0.4 could allow an authenticated user using openidconnect to spoof another users identify. IBM X-Force…
medium5.4CVSS 3.1
AVNACLPRLUINSUCLILAN
IBM WebSphere Application Liberty 19.0.0.5 through 20.0.0.4 could allow an authenticated user using openidconnect to spoof another users identify. IBM X-Force ID: 180084.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | websphere_application_server | >= 19.0.0.5 < 20.0.0.5 | 20.0.0.5 |
| ibm | websphere_application_server_liberty | — | — |
| ibm | websphere_application_server_liberty | — | — |