Known vulnerabilities in IBM Corporation IBM WebSphere Application Server Liberty 20.0.0.5

Vendor: IBM Corporation

Website: https://www.ibm.com/us-en

Total Security Bulletins: 28

Security bulletins (28)

Secuity bulletin	Severity	Status	Published
SB2026021214: Path traversal in IBM WebSphere Application Server Liberty	Low	Patched	12.02.2026
SB2026021212: Path traversal in IBM WebSphere Application Server Liberty	Low	Patched	12.02.2026
SB2026021210: Path traversal in IBM WebSphere Application Server Liberty	Low	Patched	12.02.2026
SB2025121283: Cross-site scripting in IBM WebSphere Application Server and WebSphere Application Server - Liberty	Medium	Patched	12.12.2025
SB2025110605: IBM WebSphere Application Server and WebSphere Application Server Liberty update for Jakarta Mail	Medium	Patched	06.11.2025
SB20250916312: Allocation of resources without limits or throttling in IBM WebSphere Application Server Liberty	Medium	Patched	16.09.2025
SB20250916311: Cross-site scripting in IBM WebSphere Application Server Liberty	Low	Patched	16.09.2025
SB2025091116: IBM WebSphere Application Server Liberty update for crypto-js package	Medium	Patched	11.09.2025
SB2025081354: Privilege Chaining in IBM WebSphere Application Server Liberty	High	Patched	13.08.2025
SB2025072116: Interpretation Conflict in IBM WebSphere Application Server and WebSphere Application Server Liberty	Medium	Patched	21.07.2025
SB20250718100: Stack-based buffer overflow in IBM WebSphere Application Server and WebSphere Application Server Liberty	High	Patched	18.07.2025
SB2024081566: Information disclosure in IBM WebSphere Application Server Liberty	Low	Patched	15.08.2024
SB2024042458: Denial of service in IBM WebSphere Application Server and IBM WebSphere Application Server Liberty	Medium	Patched	24.04.2024
SB2024041812: Multiple vulnerabilities in IBM WebSphere Application Server and IBM WebSphere Application Server Liberty	High	Patched	18.04.2024
SB2024040437: Resource exhaustion in IBM WebSphere Application Server Liberty	Medium	Patched	04.04.2024
SB2024040423: Resource exhaustion in IBM WebSphere Application Server Liberty	Medium	Patched	04.04.2024
SB2023111747: IBM WebSphere Application Server Liberty update for Apache Santuario	Medium	Patched	17.11.2023
SB2023111632: Resource exhaustion in IBM WebSphere Application Server Liberty	High	Patched Exploited	16.11.2023
SB2023050304: MitM attack in IBM WebSphere Application Server Liberty Web Server Plug-ins	Low	Not patched	03.05.2023
SB2023020873: IBM WebSphere Application Server Liberty update for Apache CXF	Medium	Patched	08.02.2023
SB2022111029: HTTP request smuggling in IBM WebSphere Application Server	Medium	Patched	10.11.2022
SB2022092203: Multiple vulnerabilities in WebSphere Application Server Liberty	Medium	Patched	22.09.2022
SB2022072816: Identity spoofing in IBM WebSphere Application Server Liberty	Medium	Patched	28.07.2022
SB2022061307: Identity spoofing in IBM WebSphere Application Server Liberty	Low	Patched	13.06.2022
SB2022022505: Clickjacking attack in IBM WebSphere Application Server	Low	Patched	25.02.2022
SB2022022312: IBM WebSphere Application Server update for Dojo	High	Patched	23.02.2022
SB2022021539: IBM WebSphere Application Server Liberty update for Apache Commons Compress	High	Patched	15.02.2022
SB2022012506: LDAP injection in WebSphere Application Server Liberty	Medium	Patched	25.01.2022