← back
CVE-2012-3325

CVE-2012-3325

EPSS 1.8%
IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.45, 7.0.x before 7.0.0.25, 8.0.x before 8.0.0.5, and 8.5.x Full Profile before 8.5.0.1, when the PM44303 fix is installed, does not properly validate credentials, which allows remote authenticated users to obtain administrative access via unspecified vectors.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/54971http://secunia.com/advisories/55115https://exchange.xforce.ibmcloud.com/vulnerabilities/77959http://www-01.ibm.com/support/docview.wss?uid=swg1PM71296http://www.ibm.com/support/docview.wss?uid=swg21609067http://www.securityfocus.com/bid/55309http://www.securitytracker.com/id?1027462