CVE-2008-7274

CVE-2008-7274 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

IBM WebSphere Application Server (WAS) 6.1.0.9, when the JAAS Login functionality is enabled, allows attackers to perform an internal application hashtable login by (1) not providing a password or (2) providing an empty password.

Learn more about our Cis Benchmark Audit For Ibm Websphere.