Back to search
CVE-2015-1882
Published: Apr 26, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
Multiple race conditions in IBM WebSphere Application Server (WAS) 8.5 Liberty Profile before 8.5.5.5 allow remote authenticated users to gain privileges by leveraging thread conflicts that result in Java code execution outside the context of the configured EJB Run-as user.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
74222
vdb-entry
x_refsource_BID
1032190
vdb-entry
x_refsource_SECTRACK
PI33357
vendor-advisory
x_refsource_AIXAPAR
http://www-01.ibm.com/support/docview.wss?uid=swg21697368
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now