CVE-2011-1368

The JavaServer Faces (JSF) application functionality in IBM WebSphere Application Server 8.x before 8.0.0.1 does not properly handle requests, which allows remote attackers to read unspecified files via unknown vectors.

Published: Oct 29, 2011
Updated: Apr 13, 2023
CVE: CVE-2011-1368
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
ibm / websphere_application_server	8.0.0.0	8.0.0.0.x

http://www-01.ibm.com/support/docview.wss?uid=swg24030916
http://www.ibm.com/support/docview.wss?uid=swg1PM45992
https://exchange.xforce.ibmcloud.com/vulnerabilities/70168

Vulnerability Database

CVE-2011-1368