vulnerability

IBM WebSphere Application Server: CVE-2023-35890: IBM WebSphere Application Server could provide weaker than expected security (CVE-2023-35890)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:C/I:N/A:N)	2023-07-07	2023-07-28	2025-01-28

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:N/A:N)

Published

2023-07-07

Added

2023-07-28

Modified

2025-01-28

Description

IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security, caused by the improper encoding in a local configuration file. IBM X-Force ID: 258637.

Solution(s)

ibm-was-install-8-5-5-23-ph54406ibm-was-install-9-0-5-15-ph54406ibm-was-upgrade-8-5-5-23-8-5-5-24ibm-was-upgrade-9-0-5-15-9-0-5-17

References

CVE-2023-35890
https://attackerkb.com/topics/CVE-2023-35890
URL-https://https://www.ibm.com/support/pages/node/7007857
URL-https://www.ibm.com/support/pages/node/7007857

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today