PT-2016-6748 · Ibm · Ibm Websphere Application Server+1

Publicado

2016-10-01

Atualizado

2017-07-30

CVE-2016-5986

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server versions 7.x before 7.0.0.43 IBM WebSphere Application Server versions 8.0.x before 8.0.0.13 IBM WebSphere Application Server versions 8.5.x before 8.5.5.11 IBM WebSphere Application Server versions 9.0.x before 9.0.0.2 IBM WebSphere Application Server Liberty before 16.0.0.3

Description The issue allows remote attackers to obtain sensitive information via unspecified vectors due to mishandled responses.

Recommendations For versions 7.x, update to 7.0.0.43 or later. For versions 8.0.x, update to 8.0.0.13 or later. For versions 8.5.x, update to 8.5.5.11 or later. For versions 9.0.x, update to 9.0.0.2 or later. For Liberty, update to 16.0.0.3 or later.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2016-5986

Produtos afetados

Ibm Websphere Application Server

Ibm Websphere Application Server Liberty

PT-2016-6748 · Ibm · Ibm Websphere Application Server+1

CVE-2016-5986

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6