CNNVD-202508-1261 Information
CNNVD ID
CNNVD-202508-1261
Related CVE
- CNNVD Published: 2025-08-12
Description (Chinese)
IBM WebSphere Application Server Liberty是美国国际商业机器(IBM)公司的一款构建于Open Liberty项目之上的Java应用程序服务器。 IBM WebSphere Application Server Liberty 17.0.0.3至25.0.0.8版本存在安全漏洞,该漏洞源于未遵守JMS消息配置,可能导致绕过安全限制。
Description (English)
IBM WebSphere Application Server Liberty is a Java application server built on the Open Liberty project by the United States International Business Machine (IBM). IBM WebSphere Application Server Liberty 17.0.0.3 to 25.0.0.8 contains a security loophole that stems from non-compliance with the JMS message configuration and may lead to circumvention of security restrictions.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
国际商业机器
Published
2025-08-12
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7242027 https://access.redhat.com/security/cve/cve-2025-36124
Patch
https://www.ibm.com/support/pages/node/7242027
Share on: