CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-1189

IBM Websphere Application Server 3.5.3 and earlier stores a password in cleartext in the sas.server.props file, which allows local users to obtain the passwords via a JSP script.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.8%

CVSS Severity

CVSS v2 Score 4.6

References

Products affected by CVE-2001-1189

Ibm » Websphere Application Server » Version: 3.0

cpe:2.3:a:ibm:websphere_application_server:3.0
Ibm » Websphere Application Server » Version: 3.0.2

cpe:2.3:a:ibm:websphere_application_server:3.0.2
Ibm » Websphere Application Server » Version: 3.0.2.1

cpe:2.3:a:ibm:websphere_application_server:3.0.2.1
Ibm » Websphere Application Server » Version: 3.0.2.2

cpe:2.3:a:ibm:websphere_application_server:3.0.2.2
Ibm » Websphere Application Server » Version: 3.0.2.3

cpe:2.3:a:ibm:websphere_application_server:3.0.2.3
Ibm » Websphere Application Server » Version: 3.0.2.4

cpe:2.3:a:ibm:websphere_application_server:3.0.2.4
Ibm » Websphere Application Server » Version: 3.5

cpe:2.3:a:ibm:websphere_application_server:3.5
Ibm » Websphere Application Server » Version: 3.5.1

cpe:2.3:a:ibm:websphere_application_server:3.5.1
Ibm » Websphere Application Server » Version: 3.5.2

cpe:2.3:a:ibm:websphere_application_server:3.5.2
Ibm » Websphere Application Server » Version: 3.5.3

cpe:2.3:a:ibm:websphere_application_server:3.5.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-1189

Products

Pricing

Contact Us