Vulnerability Description
Admin Center in IBM WebSphere Application Server (WAS) 8.5.5.2 through 8.5.5.9 Liberty before Liberty Fix Pack 16.0.0.2 allows remote attackers to obtain sensitive information via unspecified vectors.
CVSS Score
5.3
MEDIUM
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Websphere Application Server | 8.5.5.2 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI62052
- http://www-01.ibm.com/support/docview.wss?uid=swg21982012Vendor Advisory
- http://www.securityfocus.com/bid/91515
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI62052
- http://www-01.ibm.com/support/docview.wss?uid=swg21982012Vendor Advisory
- http://www.securityfocus.com/bid/91515
FAQ
What is CVE-2016-0389?
CVE-2016-0389 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Admin Center in IBM WebSphere Application Server (WAS) 8.5.5.2 through 8.5.5.9 Liberty before Liberty Fix Pack 16.0.0.2 allows remote attackers to obtain sensitive information via unspecified vectors.
How severe is CVE-2016-0389?
CVE-2016-0389 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-0389?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Websphere Application Server.