Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Single Sign-on (SSO) functionality in IBM WebSphere Application Server (WAS) 7.0.0.0 through 7.0.0.8 does not recognize the Requires SSL configuration option, which might allow remote attackers to obtain sensitive information by sniffing network sessions that were expected to be encrypted.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM WebSphere应用服务器Requires SSL选项绕过安全限制漏洞
Vulnerability Description
IBM Websphere应用服务器以Java和Servlet引擎为基础,支持多种HTTP服务,可帮助用户完成从开发、发布到维护交互式的动态网站的所有工作。 Websphere应用服务器在处理配置数据时存在错误,可能导致无法检测和应用单次登录的Requires SSL选项,远程用户可以绕过限制获得非授权访问。
CVSS Information
N/A
Vulnerability Type
N/A