{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T11:01:34.371","vulnerabilities":[{"cve":{"id":"CVE-2016-8934","sourceIdentifier":"psirt@us.ibm.com","published":"2017-02-01T20:59:02.880","lastModified":"2026-05-13T00:24:29.033","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"IBM WebSphere Application Server is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session."},{"lang":"es","value":"IBM WebSphere Application Server es vulnerable a las secuencias de comandos de sitios cruzados. Esta vulnerabilidad permite a usuarios incrustar código JavaScript arbitrario en la IU Web alterando así la funcionalidad prevista que potencialmente conduce a la divulgación de credenciales dentro de una sesión de confianza."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:N/I:P/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.0:*:*:*:*:*:*:*","matchCriteriaId":"49506702-1B31-4421-8DEE-5B789272EC6E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.0:-:liberty_profile:*:*:*:*:*","matchCriteriaId":"B6C5B5C9-835C-478A-AA19-4A0FAB880FB7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.1:*:*:*:*:*:*:*","matchCriteriaId":"158777FD-83D1-44B9-83B4-A3F490CA76F4"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.1:-:liberty_profile:*:*:*:*:*","matchCriteriaId":"8BCC0BDC-2847-4264-A57E-CD6F6D826254"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.2:*:*:*:*:*:*:*","matchCriteriaId":"EDA2FE6B-6E42-4E97-B803-DAB671D30FF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.2:-:liberty_profile:*:*:*:*:*","matchCriteriaId":"08E5B0F7-8580-49B9-B418-F558CC97C302"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.3:*:*:*:*:*:*:*","matchCriteriaId":"72F5A562-5B2E-4BC7-8A81-EFE5ED265803"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.3:-:*:*:liberty_profile:*:*:*","matchCriteriaId":"022BB5C5-C4A9-4794-B770-681CE41390D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.4:*:*:*:*:*:*:*","matchCriteriaId":"168E2F18-56C6-4789-BBAC-C99D4792046F"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.4:-:liberty_profile:*:*:*:*:*","matchCriteriaId":"26A6B626-8122-44D7-837B-138B9B81E72B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.5:*:*:*:*:*:*:*","matchCriteriaId":"B53EBD40-8E1A-4516-927D-ED1CF212B211"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.5:-:liberty_profile:*:*:*:*:*","matchCriteriaId":"1AA7B14D-F61D-4D64-B411-1099D33350AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.6:*:*:*:*:*:*:*","matchCriteriaId":"1A4E88BA-F637-4400-A64F-E6516AE8917C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.6:-:liberty_profile:*:*:*:*:*","matchCriteriaId":"0828CD76-B815-427B-8FE5-A6CDF8923334"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.7:*:*:*:*:*:*:*","matchCriteriaId":"32C745A6-FDE7-4236-BA1D-8BB22D184AA2"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.8:*:*:*:*:*:*:*","matchCriteriaId":"0C8EE753-8773-4DFF-90A7-35CE45C7EC30"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.9:*:*:*:*:*:*:*","matchCriteriaId":"F4B0179F-C523-4835-BDF2-E7C2166B4B8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.10:*:*:*:*:*:*:*","matchCriteriaId":"54026F65-6FA5-42E3-AE9C-F3668881A0F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:8.5.5.11:*:*:*:*:*:*:*","matchCriteriaId":"F072D774-F55B-4B5E-A65D-CE1D00716D3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:9.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"79600453-6230-461B-BA56-3F8B7696D083"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:9.0.0.1:*:*:*:*:*:*:*","matchCriteriaId":"ADB9F706-FB93-45B7-8A00-73C100C77964"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:9.0.0.2:*:*:*:*:*:*:*","matchCriteriaId":"158899BA-035B-46D9-89A5-EEEB8169D1E8"}]}]}],"references":[{"url":"http://www.ibm.com/support/docview.wss?uid=swg21995995","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/95154","source":"psirt@us.ibm.com","tags":["Technical Description","VDB Entry"]},{"url":"http://www.ibm.com/support/docview.wss?uid=swg21995995","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/95154","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Technical Description","VDB Entry"]}]}}]}