CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0506

Unspecified vulnerability in IBM WebSphere Application Server (WAS) 5.1 and 6.0.2 before 6.0.2.33 on z/OS, when CSIv2 Identity Assertion is enabled and Enterprise JavaBeans (EJB) interaction occurs between a WAS 6.1 instance and a WAS pre-6.1 instance, allows local users to have an unknown impact via vectors related to (1) use of the wrong subject and (2) multiple CBIND checks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.6%

CVSS Severity

CVSS v2 Score 6.2

References

Products affected by CVE-2009-0506

Ibm » Websphere Application Server » Version: 5.1.0

cpe:2.3:a:ibm:websphere_application_server:5.1.0
Ibm » Websphere Application Server » Version: 6.0.2

cpe:2.3:a:ibm:websphere_application_server:6.0.2
Ibm » Websphere Application Server » Version: 6.0.2.10

cpe:2.3:a:ibm:websphere_application_server:6.0.2.10
Ibm » Websphere Application Server » Version: 6.0.2.12

cpe:2.3:a:ibm:websphere_application_server:6.0.2.12
Ibm » Websphere Application Server » Version: 6.0.2.14

cpe:2.3:a:ibm:websphere_application_server:6.0.2.14
Ibm » Websphere Application Server » Version: 6.0.2.16

cpe:2.3:a:ibm:websphere_application_server:6.0.2.16
Ibm » Websphere Application Server » Version: 6.0.2.18

cpe:2.3:a:ibm:websphere_application_server:6.0.2.18
Ibm » Websphere Application Server » Version: 6.0.2.20

cpe:2.3:a:ibm:websphere_application_server:6.0.2.20
Ibm » Websphere Application Server » Version: 6.0.2.22

cpe:2.3:a:ibm:websphere_application_server:6.0.2.22
Ibm » Websphere Application Server » Version: 6.0.2.24

cpe:2.3:a:ibm:websphere_application_server:6.0.2.24
Ibm » Websphere Application Server » Version: 6.0.2.4

cpe:2.3:a:ibm:websphere_application_server:6.0.2.4
Ibm » Websphere Application Server » Version: 6.0.2.6

cpe:2.3:a:ibm:websphere_application_server:6.0.2.6
Ibm » Websphere Application Server » Version: 6.0.2.8

cpe:2.3:a:ibm:websphere_application_server:6.0.2.8
Ibm » Z/os » Version: N/A

cpe:2.3:o:ibm:z/os:-
Ibm » Z/os » Version: 1.10

cpe:2.3:o:ibm:z/os:1.10
Ibm » Z/os » Version: 1.11

cpe:2.3:o:ibm:z/os:1.11
Ibm » Z/os » Version: 1.12

cpe:2.3:o:ibm:z/os:1.12
Ibm » Z/os » Version: 1.13

cpe:2.3:o:ibm:z/os:1.13
Ibm » Z/os » Version: 1.2

cpe:2.3:o:ibm:z/os:1.2
Ibm » Z/os » Version: 1.3

cpe:2.3:o:ibm:z/os:1.3
Ibm » Z/os » Version: 1.4

cpe:2.3:o:ibm:z/os:1.4
Ibm » Z/os » Version: 1.5

cpe:2.3:o:ibm:z/os:1.5
Ibm » Z/os » Version: 1.6

cpe:2.3:o:ibm:z/os:1.6
Ibm » Z/os » Version: 1.7

cpe:2.3:o:ibm:z/os:1.7
Ibm » Z/os » Version: 1.8

cpe:2.3:o:ibm:z/os:1.8
Ibm » Z/os » Version: 1.9

cpe:2.3:o:ibm:z/os:1.9
Ibm » Z/os » Version: 2.1.0

cpe:2.3:o:ibm:z/os:2.1.0
Ibm » Z/os » Version: 2.2.0

cpe:2.3:o:ibm:z/os:2.2.0
Ibm » Z/os » Version: 2.3.0

cpe:2.3:o:ibm:z/os:2.3.0
Ibm » Z/os » Version: 2.4.0

cpe:2.3:o:ibm:z/os:2.4.0
Ibm » Z/os » Version: 2.5.0

cpe:2.3:o:ibm:z/os:2.5.0
Ibm » Z/os » Version: 3.1.0

cpe:2.3:o:ibm:z/os:3.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0506

Products

Pricing

Contact Us