← Back to CVEs
CVE-2016-5983
N/ADescription
IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 before 8.5.5.11, 9.0 before 9.0.0.2, and Liberty before 16.0.0.4 allows remote authenticated users to execute arbitrary Java code via a crafted serialized object.
CVE Details
CVSS v3.1 ScoreN/A
Published10/5/2016
Last Modified5/6/2026
Sourcenvd
Honeypot Sightings0
Affected Products
ibm:websphere_application_server
Weaknesses (CWE)
CWE-284
References
http://www-01.ibm.com/support/docview.wss?uid=swg1PI62375(psirt@us.ibm.com)
http://www.securityfocus.com/bid/93162(psirt@us.ibm.com)
https://www-01.ibm.com/support/docview.wss?uid=swg21990060(psirt@us.ibm.com)
http://www-01.ibm.com/support/docview.wss?uid=swg1PI62375(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/93162(af854a3a-2127-422b-91ae-364da2661108)
https://www-01.ibm.com/support/docview.wss?uid=swg21990060(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.