CVE-2011-1368 Information

Description

The JavaServer Faces (JSF) application functionality in IBM WebSphere Application Server 8.x before 8.0.0.1 does not properly handle requests which allows remote attackers to read unspecified files via unknown vectors.

Reference

http://www.ibm.com/support/docview.wss?uid=swg1PM45992 http://www-01.ibm.com/support/docview.wss?uid=swg24030916 https://exchange.xforce.ibmcloud.com/vulnerabilities/70168