Unrated severityNVD Advisory· Published May 17, 2006· Updated Jun 16, 2026
CVE-2006-2430
CVE-2006-2430
Description
IBM WebSphere Application Server 5.0.2 and earlier, 5.1.1 and earlier, and 6.0.2 up to 6.0.2.7 records user credentials in plaintext in addNode.log, which allows attackers to gain privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
14cpe:2.3:a:ibm:websphere_application_server:5.0.0:*:*:*:*:*:*:*+ 13 more
- cpe:2.3:a:ibm:websphere_application_server:5.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:5.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:5.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:5.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:5.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:6.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:6.0.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:6.0.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:6.0.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:6.0.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:6.0.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:6.0.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_application_server:6.0.2.7:*:*:*:*:*:*:*
- (no CPE)range: <=5.0.2, <=5.1.1, 6.0.2 to 6.0.2.7
Patches
Vulnerability mechanics
References
10- archives.neohapsis.com/archives/bugtraq/2006-05/0175.htmlnvdPatch
- secunia.com/advisories/20032nvdPatchVendor Advisory
- www-1.ibm.com/support/docview.wssnvdPatch
- www-1.ibm.com/support/docview.wssnvdPatch
- www-1.ibm.com/support/docview.wssnvdPatch
- www-1.ibm.com/support/docview.wssnvdPatch
- www-1.ibm.com/support/search.wssnvdPatch
- securityreason.com/securityalert/910nvd
- www.osvdb.org/25372nvd
- www.vupen.com/english/advisories/2006/1736nvd
News mentions
0No linked articles in our index yet.