Identity Spoofing Vulnerability in IBM WebSphere Application Server Liberty and Open Liberty (CVE-2021-20592)

Identity Spoofing Vulnerability in IBM WebSphere Application Server Liberty and Open Liberty (CVE-2021-20592)

CVE-2022-22476 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.7 and Open Liberty are vulnerable to identity spoofing by an authenticated user using a specially crafted request. IBM X-Force ID: 225604.

Learn more about our Cis Benchmark Audit For Ibm Websphere.