Unrated severityNVD Advisory· Published Nov 28, 2006· Updated Jun 16, 2026

CVE-2006-6136

Description

IBM WebSphere Application Server 6.1.0 before Fix Pack 3 (6.1.0.3) does not perform EAL4 authentication checks at the proper time during "registering of response operation," which has unknown impact and attack vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

IBM/Websphere Application Server2 versions
cpe:2.3:a:ibm:websphere_application_server:6.1.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ibm:websphere_application_server:6.1.0:*:*:*:*:*:*:*
- (no CPE)range: <6.1.0.3

Patches

Vulnerability mechanics

References

www-1.ibm.com/support/docview.wssnvdPatch
www-1.ibm.com/support/search.wssnvdPatch
secunia.com/advisories/23028nvd
www-1.ibm.com/support/docview.wssnvd
www.securityfocus.com/bid/21204nvd
www.vupen.com/english/advisories/2006/4639nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000