CVE-2024-56339 | THREATINT

Description

IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 could allow a remote attacker to bypass security restrictions caused by a failure to honor security configuration.

PUBLISHED Reserved 2024-12-20 | Published 2025-08-07 | Updated 2025-08-07 | Assigner ibm

LOW: 3.7CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Problem types

CWE-650

Product status

Default status

unaffected

9.0 (semver)

affected

Default status

unaffected

17.0.0.3 (semver)

affected

References

www.ibm.com/support/pages/node/7239955 vendor-advisory patch

cve.org (CVE-2024-56339)

nvd.nist.gov (CVE-2024-56339)

Download JSON