cvelistv5 - cve-2008-4284

cve-2008-4284

Vulnerability from cvelistv5

Published

2009-02-10 22:13

Modified

2024-08-07 10:08

Severity ?

Summary

Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature.

References

URL	Tags
cve@mitre.org	http://www-1.ibm.com/support/docview.wss?uid=swg21320242	Patch, Vendor Advisory
cve@mitre.org	http://www-1.ibm.com/support/docview.wss?uid=swg24021527	Patch, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/33700
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/47200
af854a3a-2127-422b-91ae-364da2661108	http://www-1.ibm.com/support/docview.wss?uid=swg21320242	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www-1.ibm.com/support/docview.wss?uid=swg24021527	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/33700
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/47200

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T10:08:34.976Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "PK71126",
            "tags": [
              "vendor-advisory",
              "x_refsource_AIXAPAR",
              "x_transferred"
            ],
            "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24021527"
          },
          {
            "name": "websphere-logoutexitpage-disclosure(47200)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47200"
          },
          {
            "name": "33700",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/33700"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www-1.ibm.com/support/docview.wss?uid=swg21320242"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2008-12-17T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-07T12:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "PK71126",
          "tags": [
            "vendor-advisory",
            "x_refsource_AIXAPAR"
          ],
          "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24021527"
        },
        {
          "name": "websphere-logoutexitpage-disclosure(47200)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47200"
        },
        {
          "name": "33700",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/33700"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www-1.ibm.com/support/docview.wss?uid=swg21320242"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2008-4284",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "PK71126",
              "refsource": "AIXAPAR",
              "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24021527"
            },
            {
              "name": "websphere-logoutexitpage-disclosure(47200)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47200"
            },
            {
              "name": "33700",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/33700"
            },
            {
              "name": "http://www-1.ibm.com/support/docview.wss?uid=swg21320242",
              "refsource": "CONFIRM",
              "url": "http://www-1.ibm.com/support/docview.wss?uid=swg21320242"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2008-4284",
    "datePublished": "2009-02-10T22:13:00",
    "dateReserved": "2008-09-26T00:00:00",
    "dateUpdated": "2024-08-07T10:08:34.976Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F4DC6FE-BBB4-45AA-8A5F-F204E798DF07\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0:*:z_os:*:*:*:*:*\", \"matchCriteriaId\": \"72F933CA-57D7-41BF-AF99-DA95D47FC46D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"84200300-1985-4770-81E0-31CB2CB99DCB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8873A6A6-D840-48E2-AED2-BB8584E3817A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AB3F05B9-6EE1-4838-AD41-7DD329E71E3E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"91D25A56-D654-46B2-9437-2AAEE74655B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4DA58B6E-9EA3-43F2-BC98-8178020F687C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"95BB9B87-8DBB-4FF9-8773-73281C3D52A9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"37813D54-57C8-4C41-A42D-3C7BBAFA86B6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1444794B-F893-44B2-824F-24211B872C4A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D3B019F0-A728-4803-B036-14E10A5B0389\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A2E4A501-A198-4462-8813-3D355B5BC212\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AFC0955F-486F-41FF-ACA6-0DF4D966E800\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F8451E82-F170-4182-A312-70DA75F96983\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E6008404-9114-4BC1-A413-4A18B381E359\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5FFF4792-5BFA-414B-BF84-A2308073E750\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"59E555D3-1A29-4D0B-B9C7-11A7A1C6119E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0C347C1F-4B87-4F7C-8E9B-A99D37E9959F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E6A195CF-B731-4EB6-8899-A7E6AAB14C60\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9B91BF74-963C-48D9-BAA4-9869F181CD02\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.0.2.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"58B17701-C450-463F-8C60-6293EBA448FA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"66DB2053-6DFD-4FF6-A6E9-444281531E24\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"80A7DAA3-2FFC-4AA3-AEB9-9ADF4A10AC39\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B6453897-CA51-4143-B58D-689E0B69CE34\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"72DB3E62-C18C-440D-B2C8-E14122D2EEFA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.0.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C6B95B55-7A5E-4504-B5B5-B7B03403E3A5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"31419896-89F7-43A2-8B7C-3B92744BBC46\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FDA0FE3E-2FB7-415D-BC64-4B5157EABB21\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8D8219D5-94D7-4E1B-BFA9-EF786FFD2C3C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EA0C57F6-D011-47C1-B9DC-B1C3083FD28C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F8AFDEA-237C-40CA-AFC1-ED8D212FF867\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3067F0B0-2DCD-49EB-9727-7C3C7C99A11A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2F215B48-7ED5-45EB-BD26-3D3EAD01506F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C47D1C56-238B-414B-B2D2-D7069E42D001\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"625B5901-B0AF-4D00-BC56-525A6F72943D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA32E836-172D-45BF-B911-9EA2B026E76C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"79307DAB-2195-4324-AA40-A4AE98D01513\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:5.1.1.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A580AA9B-CE1A-4F21-9FAB-5DFC4FCB34E4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"01F45BA3-6504-47AF-B757-7B6D3526FBF6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E3E6D6AF-0D69-4605-B871-6DAE01CF08EF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F5EE7744-4584-4AE4-9F27-11EFAA002E77\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0DE0C501-4062-49D0-8983-5E92765C7181\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CE27E903-6D65-4D29-9583-43FB4CB473B1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4A754DD5-585B-4E89-9C01-2B47D2F5F6F2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D40DEF90-CE7F-46BB-A6FF-50C1797866B8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.1.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A5AAA544-D3F8-4AE2-BB2D-A64CB86EC988\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.1.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7C7D4ECD-8787-4F9B-B81C-C0DFD8DD20EC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.1.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C43D3515-D9F5-4DC8-A030-9F97593495F8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.1.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A1968803-FF03-477C-81FE-87528FC6DF6A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.1.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"62C1CA3B-E575-4531-A336-8BFC9F5DEC26\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.1.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6C130982-8C6E-413E-8296-C9C277FCBE6D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.1.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5E1790E4-073A-4666-80CB-4D967928A0BB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.1.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6239EEAE-5852-4DF7-8627-87139BBB03B4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"714C405D-1E8F-45C1-8A09-5103F0080C76\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C7F31FD3-8681-4F07-9644-5CC87D512520\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C2604E01-E43E-4882-8896-5E646E850286\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"458BAD79-958E-4665-B1F8-0D46E0C57045\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0B68EE27-CC4F-4530-9DFE-D94171C45F64\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AC1A723F-D685-4FE5-8938-5682A2D02155\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"810E5AEC-5C35-4962-B9BB-32D66290D1D2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9643B593-DADF-4F57-B41E-541C7F554A4C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"521DB050-3C94-49BF-8666-6EC2C358AA27\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB4AB6BD-4439-4100-A3CE-4600AED10B65\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"375DF4AF-3C7C-47C3-BBB8-AF2B3827AC13\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"91CC2DA7-BAA6-4061-8D0C-81F002DEF06D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"59BEDD70-B6DB-448F-A998-3E8774B0DB8C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F200042C-D45E-4CAD-BF6E-E3DADF4D1D21\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.22:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4421929D-C4B9-43C5-BE61-E68484D3B198\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.23:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EB622117-C91F-47D2-9832-B7DB340796E8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.24:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0D65E0CC-FA8C-41FD-B256-47DB0C9757FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.25:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6D87691D-0719-4447-B258-5FA2BD10F11A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.27:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A5827DEC-ED8A-48D9-8C27-3B49D720E7B4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.28:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D0B1A00-191D-49B2-8841-FB6C48A5D0C2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.29:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BF771E28-65AC-4A94-8A51-4EA77BC3D0B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E5594891-E790-44E7-BC9E-0A413B385E1B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.31:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C286007A-361F-47BB-A099-E041D5CF6E48\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.0.2.32:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CD464F13-942D-40EC-8144-6D23A0AEAA81\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7B9CDD56-921C-4FAF-87E2-14B91EC1A93D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"95255265-6D69-46D3-9FFA-8EDB1734375C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2E4191D3-64AB-482C-9DEF-DD04C4C942CE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5FC6EB31-9707-408B-8BF5-66BD23441A75\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9B73E052-AF4F-4543-AA03-F5B1FA976EA8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"23171B81-C991-467A-95A4-EDDAC59C37BC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CBD75308-7F21-4DDF-AD66-C155CF4B721B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2586C584-3258-414B-AB28-1EBA0DBD0B83\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"431C250D-8279-4071-871C-1C7C4DE09B5A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BCA175EA-EDC6-4228-8E28-E9BBC981E60A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FC300B03-7A8F-4E96-B55D-18CC258BBFCF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C6A4EC9D-98C2-40B0-BA40-4838FE8D1FF7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D3A3ADFB-93E0-42E5-B31B-59F22EA4E3EA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7AF5BB33-4E78-4123-8093-EBEE2F2B5598\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E3F4B8EA-9299-42C1-AAFB-831701ED2FA2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A45B6F32-5DFF-4833-9F0F-89576724CF97\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"13C8054A-8581-4936-AF94-291AE56EB4DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"13CA9A59-DFE4-4566-8719-E6FA4720F06A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"026EBFCD-0BC1-404B-BC14-292F35BE667A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A89DD1BF-4AB0-480D-9856-B1BEA73A4AAD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B13D74F8-4321-48B3-A33E-FCCFA93013CF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"49E119EF-B6A5-4B6C-B199-C64F62CA7CB2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.20:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2043B836-3950-46A1-89E4-08985DEA0D33\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.21:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C9C8FA3D-9162-4D9B-8250-FAC93ED77A2D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.0.22:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5EE93B7F-3EB5-4BE4-BFAA-4AA30D15A76D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9FFCD0A1-64B4-4AE7-8161-D8A71F9D6904\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C086B402-55AC-4913-A929-380EBC438988\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D4FC14C3-5BFF-4F56-BBD2-3219E7151BF3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"40D5CB7D-BD01-4EF3-AF8B-100C200A4C23\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"736A02C8-784F-4CEE-BACF-C5C37E8930C0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"200B6A88-EFBD-4935-9596-D8EF3BC24D32\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ibm:websphere_application_server:6.1.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"20131F92-09B2-41D8-B5D9-38EFE6883EC0\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad de redirecci\\u00f3n abierta en ibm_security_logout servlet en IBM WebSphere Application Server (WAS) v5.1.1.19 y anteriores a las versiones v5.x, v6.0.x anterior a v6.0.2.33, y v6.1.x anterior a v6.1.0.23. permite atacantes remotos redirigir a los usuarios a paginas web de su elecci\\u00f3n y producir atacantes de phising a trav\\u00e9s de la caracter\\u00edstica logoutExitPage.\"}]",
      "id": "CVE-2008-4284",
      "lastModified": "2024-11-21T00:51:18.673",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:N/A:P\", \"baseScore\": 5.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 4.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2009-02-10T22:30:00.233",
      "references": "[{\"url\": \"http://www-1.ibm.com/support/docview.wss?uid=swg21320242\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www-1.ibm.com/support/docview.wss?uid=swg24021527\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/33700\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/47200\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www-1.ibm.com/support/docview.wss?uid=swg21320242\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www-1.ibm.com/support/docview.wss?uid=swg24021527\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/33700\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/47200\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-59\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2008-4284\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2009-02-10T22:30:00.233\",\"lastModified\":\"2024-11-21T00:51:18.673\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de redirecci\u00f3n abierta en ibm_security_logout servlet en IBM WebSphere Application Server (WAS) v5.1.1.19 y anteriores a las versiones v5.x, v6.0.x anterior a v6.0.2.33, y v6.1.x anterior a v6.1.0.23. permite atacantes remotos redirigir a los usuarios a paginas web de su elecci\u00f3n y producir atacantes de phising a trav\u00e9s de la caracter\u00edstica logoutExitPage.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:N/A:P\",\"baseScore\":5.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-59\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F4DC6FE-BBB4-45AA-8A5F-F204E798DF07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0:*:z_os:*:*:*:*:*\",\"matchCriteriaId\":\"72F933CA-57D7-41BF-AF99-DA95D47FC46D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84200300-1985-4770-81E0-31CB2CB99DCB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8873A6A6-D840-48E2-AED2-BB8584E3817A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB3F05B9-6EE1-4838-AD41-7DD329E71E3E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91D25A56-D654-46B2-9437-2AAEE74655B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DA58B6E-9EA3-43F2-BC98-8178020F687C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"95BB9B87-8DBB-4FF9-8773-73281C3D52A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"37813D54-57C8-4C41-A42D-3C7BBAFA86B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1444794B-F893-44B2-824F-24211B872C4A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3B019F0-A728-4803-B036-14E10A5B0389\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2E4A501-A198-4462-8813-3D355B5BC212\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFC0955F-486F-41FF-ACA6-0DF4D966E800\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F8451E82-F170-4182-A312-70DA75F96983\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6008404-9114-4BC1-A413-4A18B381E359\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5FFF4792-5BFA-414B-BF84-A2308073E750\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59E555D3-1A29-4D0B-B9C7-11A7A1C6119E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C347C1F-4B87-4F7C-8E9B-A99D37E9959F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6A195CF-B731-4EB6-8899-A7E6AAB14C60\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B91BF74-963C-48D9-BAA4-9869F181CD02\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.0.2.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58B17701-C450-463F-8C60-6293EBA448FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66DB2053-6DFD-4FF6-A6E9-444281531E24\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80A7DAA3-2FFC-4AA3-AEB9-9ADF4A10AC39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6453897-CA51-4143-B58D-689E0B69CE34\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72DB3E62-C18C-440D-B2C8-E14122D2EEFA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6B95B55-7A5E-4504-B5B5-B7B03403E3A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31419896-89F7-43A2-8B7C-3B92744BBC46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FDA0FE3E-2FB7-415D-BC64-4B5157EABB21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8D8219D5-94D7-4E1B-BFA9-EF786FFD2C3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA0C57F6-D011-47C1-B9DC-B1C3083FD28C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F8AFDEA-237C-40CA-AFC1-ED8D212FF867\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3067F0B0-2DCD-49EB-9727-7C3C7C99A11A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F215B48-7ED5-45EB-BD26-3D3EAD01506F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C47D1C56-238B-414B-B2D2-D7069E42D001\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"625B5901-B0AF-4D00-BC56-525A6F72943D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA32E836-172D-45BF-B911-9EA2B026E76C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79307DAB-2195-4324-AA40-A4AE98D01513\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:5.1.1.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A580AA9B-CE1A-4F21-9FAB-5DFC4FCB34E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"01F45BA3-6504-47AF-B757-7B6D3526FBF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3E6D6AF-0D69-4605-B871-6DAE01CF08EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5EE7744-4584-4AE4-9F27-11EFAA002E77\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0DE0C501-4062-49D0-8983-5E92765C7181\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE27E903-6D65-4D29-9583-43FB4CB473B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A754DD5-585B-4E89-9C01-2B47D2F5F6F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D40DEF90-CE7F-46BB-A6FF-50C1797866B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5AAA544-D3F8-4AE2-BB2D-A64CB86EC988\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C7D4ECD-8787-4F9B-B81C-C0DFD8DD20EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C43D3515-D9F5-4DC8-A030-9F97593495F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.1.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1968803-FF03-477C-81FE-87528FC6DF6A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.1.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62C1CA3B-E575-4531-A336-8BFC9F5DEC26\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C130982-8C6E-413E-8296-C9C277FCBE6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.1.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5E1790E4-073A-4666-80CB-4D967928A0BB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.1.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6239EEAE-5852-4DF7-8627-87139BBB03B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"714C405D-1E8F-45C1-8A09-5103F0080C76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7F31FD3-8681-4F07-9644-5CC87D512520\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2604E01-E43E-4882-8896-5E646E850286\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"458BAD79-958E-4665-B1F8-0D46E0C57045\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B68EE27-CC4F-4530-9DFE-D94171C45F64\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC1A723F-D685-4FE5-8938-5682A2D02155\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"810E5AEC-5C35-4962-B9BB-32D66290D1D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9643B593-DADF-4F57-B41E-541C7F554A4C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"521DB050-3C94-49BF-8666-6EC2C358AA27\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB4AB6BD-4439-4100-A3CE-4600AED10B65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"375DF4AF-3C7C-47C3-BBB8-AF2B3827AC13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91CC2DA7-BAA6-4061-8D0C-81F002DEF06D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59BEDD70-B6DB-448F-A998-3E8774B0DB8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F200042C-D45E-4CAD-BF6E-E3DADF4D1D21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4421929D-C4B9-43C5-BE61-E68484D3B198\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB622117-C91F-47D2-9832-B7DB340796E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D65E0CC-FA8C-41FD-B256-47DB0C9757FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D87691D-0719-4447-B258-5FA2BD10F11A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5827DEC-ED8A-48D9-8C27-3B49D720E7B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D0B1A00-191D-49B2-8841-FB6C48A5D0C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF771E28-65AC-4A94-8A51-4EA77BC3D0B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5594891-E790-44E7-BC9E-0A413B385E1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C286007A-361F-47BB-A099-E041D5CF6E48\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.0.2.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD464F13-942D-40EC-8144-6D23A0AEAA81\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B9CDD56-921C-4FAF-87E2-14B91EC1A93D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"95255265-6D69-46D3-9FFA-8EDB1734375C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E4191D3-64AB-482C-9DEF-DD04C4C942CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5FC6EB31-9707-408B-8BF5-66BD23441A75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B73E052-AF4F-4543-AA03-F5B1FA976EA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23171B81-C991-467A-95A4-EDDAC59C37BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBD75308-7F21-4DDF-AD66-C155CF4B721B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2586C584-3258-414B-AB28-1EBA0DBD0B83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"431C250D-8279-4071-871C-1C7C4DE09B5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BCA175EA-EDC6-4228-8E28-E9BBC981E60A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC300B03-7A8F-4E96-B55D-18CC258BBFCF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6A4EC9D-98C2-40B0-BA40-4838FE8D1FF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3A3ADFB-93E0-42E5-B31B-59F22EA4E3EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7AF5BB33-4E78-4123-8093-EBEE2F2B5598\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3F4B8EA-9299-42C1-AAFB-831701ED2FA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A45B6F32-5DFF-4833-9F0F-89576724CF97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13C8054A-8581-4936-AF94-291AE56EB4DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13CA9A59-DFE4-4566-8719-E6FA4720F06A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"026EBFCD-0BC1-404B-BC14-292F35BE667A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A89DD1BF-4AB0-480D-9856-B1BEA73A4AAD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B13D74F8-4321-48B3-A33E-FCCFA93013CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49E119EF-B6A5-4B6C-B199-C64F62CA7CB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2043B836-3950-46A1-89E4-08985DEA0D33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C9C8FA3D-9162-4D9B-8250-FAC93ED77A2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.0.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5EE93B7F-3EB5-4BE4-BFAA-4AA30D15A76D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FFCD0A1-64B4-4AE7-8161-D8A71F9D6904\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C086B402-55AC-4913-A929-380EBC438988\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4FC14C3-5BFF-4F56-BBD2-3219E7151BF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40D5CB7D-BD01-4EF3-AF8B-100C200A4C23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"736A02C8-784F-4CEE-BACF-C5C37E8930C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"200B6A88-EFBD-4935-9596-D8EF3BC24D32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:websphere_application_server:6.1.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20131F92-09B2-41D8-B5D9-38EFE6883EC0\"}]}]}],\"references\":[{\"url\":\"http://www-1.ibm.com/support/docview.wss?uid=swg21320242\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www-1.ibm.com/support/docview.wss?uid=swg24021527\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/33700\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/47200\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www-1.ibm.com/support/docview.wss?uid=swg21320242\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www-1.ibm.com/support/docview.wss?uid=swg24021527\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/33700\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/47200\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

ghsa-x3qj-p2x9-x5g4

Vulnerability from github

Published

2022-05-02 00:08

Modified

2022-05-02 00:08

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2008-4284"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-59"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2009-02-10T22:30:00Z",
    "severity": "MODERATE"
  },
  "details": "Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature.",
  "id": "GHSA-x3qj-p2x9-x5g4",
  "modified": "2022-05-02T00:08:33Z",
  "published": "2022-05-02T00:08:33Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-4284"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47200"
    },
    {
      "type": "WEB",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swg21320242"
    },
    {
      "type": "WEB",
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24021527"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/33700"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

cve-2008-4284

Vulnerability from fkie_nvd

Published

2009-02-10 22:30

Modified

2024-11-21 00:51

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://www-1.ibm.com/support/docview.wss?uid=swg21320242	Patch, Vendor Advisory
cve@mitre.org	http://www-1.ibm.com/support/docview.wss?uid=swg24021527	Patch, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/33700
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/47200
af854a3a-2127-422b-91ae-364da2661108	http://www-1.ibm.com/support/docview.wss?uid=swg21320242	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www-1.ibm.com/support/docview.wss?uid=swg24021527	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/33700
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/47200

Impacted products

Vendor	Product	Version
ibm	websphere_application_server	5.0
ibm	websphere_application_server	5.0
ibm	websphere_application_server	5.0.0
ibm	websphere_application_server	5.0.1
ibm	websphere_application_server	5.0.2
ibm	websphere_application_server	5.0.2.1
ibm	websphere_application_server	5.0.2.2
ibm	websphere_application_server	5.0.2.3
ibm	websphere_application_server	5.0.2.4
ibm	websphere_application_server	5.0.2.5
ibm	websphere_application_server	5.0.2.6
ibm	websphere_application_server	5.0.2.7
ibm	websphere_application_server	5.0.2.8
ibm	websphere_application_server	5.0.2.9
ibm	websphere_application_server	5.0.2.10
ibm	websphere_application_server	5.0.2.11
ibm	websphere_application_server	5.0.2.12
ibm	websphere_application_server	5.0.2.13
ibm	websphere_application_server	5.0.2.14
ibm	websphere_application_server	5.0.2.15
ibm	websphere_application_server	5.0.2.16
ibm	websphere_application_server	5.1.0
ibm	websphere_application_server	5.1.0.2
ibm	websphere_application_server	5.1.0.3
ibm	websphere_application_server	5.1.0.4
ibm	websphere_application_server	5.1.0.5
ibm	websphere_application_server	5.1.1
ibm	websphere_application_server	5.1.1.1
ibm	websphere_application_server	5.1.1.10
ibm	websphere_application_server	5.1.1.11
ibm	websphere_application_server	5.1.1.12
ibm	websphere_application_server	5.1.1.13
ibm	websphere_application_server	5.1.1.14
ibm	websphere_application_server	5.1.1.15
ibm	websphere_application_server	5.1.1.16
ibm	websphere_application_server	5.1.1.17
ibm	websphere_application_server	5.1.1.18
ibm	websphere_application_server	5.1.1.19
ibm	websphere_application_server	6.0
ibm	websphere_application_server	6.0.0.1
ibm	websphere_application_server	6.0.0.2
ibm	websphere_application_server	6.0.0.3
ibm	websphere_application_server	6.0.1
ibm	websphere_application_server	6.0.1.1
ibm	websphere_application_server	6.0.1.2
ibm	websphere_application_server	6.0.1.3
ibm	websphere_application_server	6.0.1.5
ibm	websphere_application_server	6.0.1.7
ibm	websphere_application_server	6.0.1.9
ibm	websphere_application_server	6.0.1.11
ibm	websphere_application_server	6.0.1.13
ibm	websphere_application_server	6.0.1.15
ibm	websphere_application_server	6.0.1.17
ibm	websphere_application_server	6.0.2
ibm	websphere_application_server	6.0.2.1
ibm	websphere_application_server	6.0.2.2
ibm	websphere_application_server	6.0.2.3
ibm	websphere_application_server	6.0.2.4
ibm	websphere_application_server	6.0.2.5
ibm	websphere_application_server	6.0.2.6
ibm	websphere_application_server	6.0.2.7
ibm	websphere_application_server	6.0.2.9
ibm	websphere_application_server	6.0.2.11
ibm	websphere_application_server	6.0.2.13
ibm	websphere_application_server	6.0.2.15
ibm	websphere_application_server	6.0.2.17
ibm	websphere_application_server	6.0.2.19
ibm	websphere_application_server	6.0.2.22
ibm	websphere_application_server	6.0.2.23
ibm	websphere_application_server	6.0.2.24
ibm	websphere_application_server	6.0.2.25
ibm	websphere_application_server	6.0.2.27
ibm	websphere_application_server	6.0.2.28
ibm	websphere_application_server	6.0.2.29
ibm	websphere_application_server	6.0.2.30
ibm	websphere_application_server	6.0.2.31
ibm	websphere_application_server	6.0.2.32
ibm	websphere_application_server	6.1
ibm	websphere_application_server	6.1.0
ibm	websphere_application_server	6.1.0.0
ibm	websphere_application_server	6.1.0.1
ibm	websphere_application_server	6.1.0.2
ibm	websphere_application_server	6.1.0.3
ibm	websphere_application_server	6.1.0.4
ibm	websphere_application_server	6.1.0.5
ibm	websphere_application_server	6.1.0.6
ibm	websphere_application_server	6.1.0.7
ibm	websphere_application_server	6.1.0.8
ibm	websphere_application_server	6.1.0.9
ibm	websphere_application_server	6.1.0.10
ibm	websphere_application_server	6.1.0.11
ibm	websphere_application_server	6.1.0.12
ibm	websphere_application_server	6.1.0.13
ibm	websphere_application_server	6.1.0.14
ibm	websphere_application_server	6.1.0.15
ibm	websphere_application_server	6.1.0.16
ibm	websphere_application_server	6.1.0.17
ibm	websphere_application_server	6.1.0.18
ibm	websphere_application_server	6.1.0.19
ibm	websphere_application_server	6.1.0.20
ibm	websphere_application_server	6.1.0.21
ibm	websphere_application_server	6.1.0.22
ibm	websphere_application_server	6.1.1
ibm	websphere_application_server	6.1.3
ibm	websphere_application_server	6.1.5
ibm	websphere_application_server	6.1.6
ibm	websphere_application_server	6.1.7
ibm	websphere_application_server	6.1.13
ibm	websphere_application_server	6.1.14

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1F4DC6FE-BBB4-45AA-8A5F-F204E798DF07",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0:*:z_os:*:*:*:*:*",
              "matchCriteriaId": "72F933CA-57D7-41BF-AF99-DA95D47FC46D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "84200300-1985-4770-81E0-31CB2CB99DCB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8873A6A6-D840-48E2-AED2-BB8584E3817A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "AB3F05B9-6EE1-4838-AD41-7DD329E71E3E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "91D25A56-D654-46B2-9437-2AAEE74655B3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "4DA58B6E-9EA3-43F2-BC98-8178020F687C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "95BB9B87-8DBB-4FF9-8773-73281C3D52A9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "37813D54-57C8-4C41-A42D-3C7BBAFA86B6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "1444794B-F893-44B2-824F-24211B872C4A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "D3B019F0-A728-4803-B036-14E10A5B0389",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2E4A501-A198-4462-8813-3D355B5BC212",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "AFC0955F-486F-41FF-ACA6-0DF4D966E800",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "F8451E82-F170-4182-A312-70DA75F96983",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "E6008404-9114-4BC1-A413-4A18B381E359",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FFF4792-5BFA-414B-BF84-A2308073E750",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "59E555D3-1A29-4D0B-B9C7-11A7A1C6119E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "0C347C1F-4B87-4F7C-8E9B-A99D37E9959F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "E6A195CF-B731-4EB6-8899-A7E6AAB14C60",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "9B91BF74-963C-48D9-BAA4-9869F181CD02",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "58B17701-C450-463F-8C60-6293EBA448FA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "66DB2053-6DFD-4FF6-A6E9-444281531E24",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "80A7DAA3-2FFC-4AA3-AEB9-9ADF4A10AC39",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "B6453897-CA51-4143-B58D-689E0B69CE34",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "72DB3E62-C18C-440D-B2C8-E14122D2EEFA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6B95B55-7A5E-4504-B5B5-B7B03403E3A5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "31419896-89F7-43A2-8B7C-3B92744BBC46",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "FDA0FE3E-2FB7-415D-BC64-4B5157EABB21",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "8D8219D5-94D7-4E1B-BFA9-EF786FFD2C3C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA0C57F6-D011-47C1-B9DC-B1C3083FD28C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "7F8AFDEA-237C-40CA-AFC1-ED8D212FF867",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "3067F0B0-2DCD-49EB-9727-7C3C7C99A11A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F215B48-7ED5-45EB-BD26-3D3EAD01506F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "C47D1C56-238B-414B-B2D2-D7069E42D001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "625B5901-B0AF-4D00-BC56-525A6F72943D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA32E836-172D-45BF-B911-9EA2B026E76C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "79307DAB-2195-4324-AA40-A4AE98D01513",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.19:*:*:*:*:*:*:*",
              "matchCriteriaId": "A580AA9B-CE1A-4F21-9FAB-5DFC4FCB34E4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "01F45BA3-6504-47AF-B757-7B6D3526FBF6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "E3E6D6AF-0D69-4605-B871-6DAE01CF08EF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5EE7744-4584-4AE4-9F27-11EFAA002E77",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "0DE0C501-4062-49D0-8983-5E92765C7181",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE27E903-6D65-4D29-9583-43FB4CB473B1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "4A754DD5-585B-4E89-9C01-2B47D2F5F6F2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D40DEF90-CE7F-46BB-A6FF-50C1797866B8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "A5AAA544-D3F8-4AE2-BB2D-A64CB86EC988",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "7C7D4ECD-8787-4F9B-B81C-C0DFD8DD20EC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "C43D3515-D9F5-4DC8-A030-9F97593495F8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "A1968803-FF03-477C-81FE-87528FC6DF6A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "62C1CA3B-E575-4531-A336-8BFC9F5DEC26",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "6C130982-8C6E-413E-8296-C9C277FCBE6D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "5E1790E4-073A-4666-80CB-4D967928A0BB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "6239EEAE-5852-4DF7-8627-87139BBB03B4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "714C405D-1E8F-45C1-8A09-5103F0080C76",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C7F31FD3-8681-4F07-9644-5CC87D512520",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "C2604E01-E43E-4882-8896-5E646E850286",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "458BAD79-958E-4665-B1F8-0D46E0C57045",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B68EE27-CC4F-4530-9DFE-D94171C45F64",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "AC1A723F-D685-4FE5-8938-5682A2D02155",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "810E5AEC-5C35-4962-B9BB-32D66290D1D2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "9643B593-DADF-4F57-B41E-541C7F554A4C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "521DB050-3C94-49BF-8666-6EC2C358AA27",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB4AB6BD-4439-4100-A3CE-4600AED10B65",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "375DF4AF-3C7C-47C3-BBB8-AF2B3827AC13",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "91CC2DA7-BAA6-4061-8D0C-81F002DEF06D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "59BEDD70-B6DB-448F-A998-3E8774B0DB8C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.19:*:*:*:*:*:*:*",
              "matchCriteriaId": "F200042C-D45E-4CAD-BF6E-E3DADF4D1D21",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.22:*:*:*:*:*:*:*",
              "matchCriteriaId": "4421929D-C4B9-43C5-BE61-E68484D3B198",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.23:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB622117-C91F-47D2-9832-B7DB340796E8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.24:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D65E0CC-FA8C-41FD-B256-47DB0C9757FC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.25:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D87691D-0719-4447-B258-5FA2BD10F11A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.27:*:*:*:*:*:*:*",
              "matchCriteriaId": "A5827DEC-ED8A-48D9-8C27-3B49D720E7B4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.28:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D0B1A00-191D-49B2-8841-FB6C48A5D0C2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.29:*:*:*:*:*:*:*",
              "matchCriteriaId": "BF771E28-65AC-4A94-8A51-4EA77BC3D0B3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.30:*:*:*:*:*:*:*",
              "matchCriteriaId": "E5594891-E790-44E7-BC9E-0A413B385E1B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.31:*:*:*:*:*:*:*",
              "matchCriteriaId": "C286007A-361F-47BB-A099-E041D5CF6E48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.32:*:*:*:*:*:*:*",
              "matchCriteriaId": "CD464F13-942D-40EC-8144-6D23A0AEAA81",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7B9CDD56-921C-4FAF-87E2-14B91EC1A93D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "95255265-6D69-46D3-9FFA-8EDB1734375C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2E4191D3-64AB-482C-9DEF-DD04C4C942CE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FC6EB31-9707-408B-8BF5-66BD23441A75",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "9B73E052-AF4F-4543-AA03-F5B1FA976EA8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "23171B81-C991-467A-95A4-EDDAC59C37BC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBD75308-7F21-4DDF-AD66-C155CF4B721B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "2586C584-3258-414B-AB28-1EBA0DBD0B83",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "431C250D-8279-4071-871C-1C7C4DE09B5A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "BCA175EA-EDC6-4228-8E28-E9BBC981E60A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "FC300B03-7A8F-4E96-B55D-18CC258BBFCF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6A4EC9D-98C2-40B0-BA40-4838FE8D1FF7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "D3A3ADFB-93E0-42E5-B31B-59F22EA4E3EA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "7AF5BB33-4E78-4123-8093-EBEE2F2B5598",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "E3F4B8EA-9299-42C1-AAFB-831701ED2FA2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "A45B6F32-5DFF-4833-9F0F-89576724CF97",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "13C8054A-8581-4936-AF94-291AE56EB4DE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "13CA9A59-DFE4-4566-8719-E6FA4720F06A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "026EBFCD-0BC1-404B-BC14-292F35BE667A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "A89DD1BF-4AB0-480D-9856-B1BEA73A4AAD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "B13D74F8-4321-48B3-A33E-FCCFA93013CF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.19:*:*:*:*:*:*:*",
              "matchCriteriaId": "49E119EF-B6A5-4B6C-B199-C64F62CA7CB2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "2043B836-3950-46A1-89E4-08985DEA0D33",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.21:*:*:*:*:*:*:*",
              "matchCriteriaId": "C9C8FA3D-9162-4D9B-8250-FAC93ED77A2D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.22:*:*:*:*:*:*:*",
              "matchCriteriaId": "5EE93B7F-3EB5-4BE4-BFAA-4AA30D15A76D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "9FFCD0A1-64B4-4AE7-8161-D8A71F9D6904",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "C086B402-55AC-4913-A929-380EBC438988",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4FC14C3-5BFF-4F56-BBD2-3219E7151BF3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "40D5CB7D-BD01-4EF3-AF8B-100C200A4C23",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "736A02C8-784F-4CEE-BACF-C5C37E8930C0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "200B6A88-EFBD-4935-9596-D8EF3BC24D32",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "20131F92-09B2-41D8-B5D9-38EFE6883EC0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de redirecci\u00f3n abierta en ibm_security_logout servlet en IBM WebSphere Application Server (WAS) v5.1.1.19 y anteriores a las versiones v5.x, v6.0.x anterior a v6.0.2.33, y v6.1.x anterior a v6.1.0.23. permite atacantes remotos redirigir a los usuarios a paginas web de su elecci\u00f3n y producir atacantes de phising a trav\u00e9s de la caracter\u00edstica logoutExitPage."
    }
  ],
  "id": "CVE-2008-4284",
  "lastModified": "2024-11-21T00:51:18.673",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 4.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2009-02-10T22:30:00.233",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swg21320242"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24021527"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/33700"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47200"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swg21320242"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24021527"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/33700"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47200"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-59"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2008-4284

Vulnerability from gsd

Modified

2023-12-13 01:23

Details

Aliases

CVE-2008-4284

Aliases

CVE-2008-4284

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2008-4284",
    "description": "Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature.",
    "id": "GSD-2008-4284"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2008-4284"
      ],
      "details": "Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature.",
      "id": "GSD-2008-4284",
      "modified": "2023-12-13T01:23:00.249761Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2008-4284",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "PK71126",
            "refsource": "AIXAPAR",
            "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24021527"
          },
          {
            "name": "websphere-logoutexitpage-disclosure(47200)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47200"
          },
          {
            "name": "33700",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/33700"
          },
          {
            "name": "http://www-1.ibm.com/support/docview.wss?uid=swg21320242",
            "refsource": "CONFIRM",
            "url": "http://www-1.ibm.com/support/docview.wss?uid=swg21320242"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.13:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.14:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.15:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.16:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.14:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.15:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.16:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.0.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.0.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.17:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.12:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.12:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.13:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.15:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.15:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.24:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.23:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.18:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.0.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.22:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.32:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.13:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.14:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.17:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.13:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.17:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.19:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.25:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.27:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.30:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.31:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.15:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.16:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.22:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.28:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.29:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.12:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.13:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.14:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.20:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.21:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0.2.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.0.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.0:*:z_os:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:5.1.1.19:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.1.13:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.17:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.18:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.19:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2008-4284"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-59"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "PK71126",
              "refsource": "AIXAPAR",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24021527"
            },
            {
              "name": "33700",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/33700"
            },
            {
              "name": "http://www-1.ibm.com/support/docview.wss?uid=swg21320242",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www-1.ibm.com/support/docview.wss?uid=swg21320242"
            },
            {
              "name": "websphere-logoutexitpage-disclosure(47200)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47200"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 4.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-08-08T01:32Z",
      "publishedDate": "2009-02-10T22:30Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2008-4284

Vulnerability from cvelistv5

ghsa-x3qj-p2x9-x5g4

Vulnerability from github

cve-2008-4284

Vulnerability from fkie_nvd

gsd-2008-4284

Vulnerability from gsd

Tags

Sightings

Nomenclature