IBM WebSphere Application Server Liberty Profile 8.5.x before 8.5.5.4 allows remote attackers to gain privileges by leveraging the combination of a servlets deployment descriptor security constraints and ServletSecurity annotations.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Websphere_application_server | Ibm | 8.5.0.0 (including) | 8.5.0.0 (including) |
Websphere_application_server | Ibm | 8.5.0.1 (including) | 8.5.0.1 (including) |
Websphere_application_server | Ibm | 8.5.0.2 (including) | 8.5.0.2 (including) |
Websphere_application_server | Ibm | 8.5.5.0 (including) | 8.5.5.0 (including) |
Websphere_application_server | Ibm | 8.5.5.1 (including) | 8.5.5.1 (including) |
Websphere_application_server | Ibm | 8.5.5.2 (including) | 8.5.5.2 (including) |
Websphere_application_server | Ibm | 8.5.5.3 (including) | 8.5.5.3 (including) |