Ibm Websphere Application Server Nd vulnerabilities
2 known vulnerabilities affecting ibm/websphere_application_server_nd.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2021-20517HIGHCVSS 8.8≥ 8.5.0.0, < 8.5.5.20≥ 9.0.0.0, < 9.0.5.8+2 more2021-06-07
CVE-2021-20517 [HIGH] CWE-22 CVE-2021-20517: IBM WebSphere Application Server Network Deployment 8.5 and 9.0 could allow a remote authenticated a
IBM WebSphere Application Server Network Deployment 8.5 and 9.0 could allow a remote authenticated attacker to traverse directories. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to read and delete arbitrary files on the system. IBM X-Force ID: 198435.
cvelistv5nvd
CVE-2020-4575MEDIUMCVSS 6.1v8.5v9.02020-08-27
CVE-2020-4575 [MEDIUM] CWE-79 CVE-2020-4575: IBM WebSphere Application Server ND 8.5 and 9.0, and IBM WebSphere Virtual Enterprise 7.0 and 8.0 ar
IBM WebSphere Application Server ND 8.5 and 9.0, and IBM WebSphere Virtual Enterprise 7.0 and 8.0 are vulnerable to cross-site scripting when High Availability Deployment Manager is configured.
cvelistv5nvd