Vulnerability Details CVE-2008-7274
IBM WebSphere Application Server (WAS) 6.1.0.9, when the JAAS Login functionality is enabled, allows attackers to perform an internal application hashtable login by (1) not providing a password or (2) providing an empty password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.1%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2008-7274
-
cpe:2.3:a:ibm:websphere_application_server:6.1.0.9