AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2011-1377: The Web Services Security component in the Web Services Feature Pack before 6.1.0.41 for IBM WebSphere Application Serve

infovulnerability

security

Source: NVD/CVE DatabaseJanuary 15, 2012CVE-2011-1377

Summary

CVE-2011-1377 is a vulnerability in the Web Services Security component of IBM WebSphere Application Server (WAS) version 6.1 where the Web Services Feature Pack before version 6.1.0.41 does not properly handle enabling WS-Security (a security standard for web services) for JAX-WS applications, potentially causing unspecified security impacts. The vulnerability has an unknown severity rating and the specific attack methods are not detailed in this source.

Solution / Mitigation

Upgrade the Web Services Feature Pack to version 6.1.0.41 or later for IBM WebSphere Application Server 6.1.

Vulnerability Details

CVSS Score

10

EPSS (30-day exploit probability)

EPSS: 1.4%

Classification

Attack SophisticationModerate

Original source: https://nvd.nist.gov/vuln/detail/CVE-2011-1377

First tracked: February 15, 2026 at 08:43 PM

Classified by LLM (prompt v3) · confidence: 95%