CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-1151

IBM WebSphere Application Server 8.0, 8.5, 8.5.5, and 9.0 using OpenID Connect (OIDC) configured with a Trust Association Interceptor (TAI) could allow a user to gain elevated privileges on the system. IBM Reference #: 1999293.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 67.3%

CVSS Severity

CVSS v3 Score 8.1

CVSS v2 Score 6.8

References

http://www.ibm.com/support/docview.wss?uid=swg21999293
http://www.securityfocus.com/bid/96841
http://www.securitytracker.com/id/1037984
http://www.ibm.com/support/docview.wss?uid=swg21999293
http://www.securityfocus.com/bid/96841
http://www.securitytracker.com/id/1037984

Products affected by CVE-2017-1151

Ibm » Websphere Application Server » Version: 8.0

cpe:2.3:a:ibm:websphere_application_server:8.0
Ibm » Websphere Application Server » Version: 8.5

cpe:2.3:a:ibm:websphere_application_server:8.5
Ibm » Websphere Application Server » Version: 8.5.5

cpe:2.3:a:ibm:websphere_application_server:8.5.5
Ibm » Websphere Application Server » Version: 9.0

cpe:2.3:a:ibm:websphere_application_server:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-1151

Products

Pricing

Contact Us