AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2010-0786: The Web Services Security component in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.13 does not properly impl

infovulnerability

security

Source: NVD/CVE DatabaseNovember 9, 2010CVE-2010-0786

Summary

A flaw in the Web Services Security component of IBM WebSphere Application Server (WAS) version 7.0 before 7.0.0.13 fails to properly implement JAX-WS (Java API for XML Web Services, a standard for building web services in Java). Remote attackers can exploit this by sending a specially crafted JAX-WS request to cause a denial of service attack (a disruption where the system becomes unavailable or corrupts data).

Solution / Mitigation

Update IBM WebSphere Application Server 7.0 to version 7.0.0.13 or later.

Vulnerability Details

CVSS Score

5

EPSS (30-day exploit probability)

EPSS: 0.6%

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-20

Original source: https://nvd.nist.gov/vuln/detail/CVE-2010-0786

First tracked: February 15, 2026 at 08:43 PM

Classified by LLM (prompt v3) · confidence: 95%