Unspecified Impact and Remote Attack Vectors in IBM WebSphere Application Server (WAS)

Unspecified Impact and Remote Attack Vectors in IBM WebSphere Application Server (WAS)

CVE-2012-3306 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.45, 7.0 before 7.0.0.25, 8.0 before 8.0.0.5, and 8.5 before 8.5.0.1, when multi-domain support is configured, does not purge password data from the authentication cache, which has unspecified impact and remote attack vectors.

Learn more about our Cis Benchmark Audit For Ibm Websphere.