CVE-2019-4271
CVE-2019-4271
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 3.5EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
17 Sep 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Admin console is vulnerable to a Client-side HTTP parameter pollution vulnerability. IBM X-Force ID: 160243.
CVSS:3.0/AC:L/S:U/AV:N/C:N/PR:L/I:L/UI:R/A:N/RL:O/E:U/RC:C
Affected products
IBM · WebSphere Application Server