CVE-2023-50314

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server Liberty versions 17.0.0.3 through 24.0.0.8

Description The issue allows an attacker with access to the network to conduct spoofing attacks, potentially obtaining sensitive information by exploiting a vulnerability using a certificate issued by a trusted authority. This is due to improper certificate validation.

Recommendations For IBM WebSphere Application Server Liberty versions 17.0.0.3 through 24.0.0.8, update to a version that fixes the improper certificate validation issue to prevent spoofing attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.