← back
CVE-2011-0316

CVE-2011-0316

EPSS 2.2%
The Administrative Console component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.35 and 7.0 before 7.0.0.15 does not properly restrict access to console servlets, which allows remote attackers to obtain potentially sensitive status information via a direct request.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/42938https://exchange.xforce.ibmcloud.com/vulnerabilities/64558http://www-01.ibm.com/support/docview.wss?uid=swg1PM24372http://www-01.ibm.com/support/docview.wss?uid=swg27007951http://www-01.ibm.com/support/docview.wss?uid=swg27014463http://www.securityfocus.com/bid/46736http://www.vupen.com/english/advisories/2011/0564