Description
IBM WebSphere Application Server Liberty and Open Liberty 17.0.0.3 through 22.0.0.5 are vulnerable to identity spoofing by an authenticated user. IBM X-Force ID: 225603.
CVSS breakdown
CVSS 3.0
Privileges Required
Low
Confidentiality
Low
Attack Vector
Network
Integrity
Low
Availability
Low
Attack Complexity
High
User Interaction
None
Scope
Unchanged
RC
Changed
E
Unchanged
RL
O
Affected products
- ibm / websphere_application_server___liberty17.0.0.3 – 17.0.0.3
- ibm / websphere_application_server___liberty22.0.0.5 – 22.0.0.5