The Application Snoop Servlet in IBM WebSphere Application Server 7.0 before 7.0.0.23 does not properly restrict access, which allows remote attackers to obtain sensitive client and request information via a direct request.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2012-06-20T10:00:00

Updated: 2024-08-06T19:26:08.431Z

Reserved: 2012-04-04T00:00:00

Link: CVE-2012-2170

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2012-06-20T10:27:28.270

Modified: 2025-04-11T00:51:21.963

Link: CVE-2012-2170

cve-icon Redhat

No data.