Medium
IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.7 and Open Liberty are vulnerable to identity spoofing by an authenticated user using a specially crafted request.
IBM
IBM WebSphere Application Server Liberty 17.0.0.3
IBM WebSphere Application Server Liberty 22.0.0.7
Refer to IBM Security Bulletin for patch, upgrade, or suggested workaround information.