The host is installed with WebSphere Application Server Network Deployment 8.5.x through 8.5.5.3 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to handle servlet's deployment descriptor security constraints and ServletSecurity annotations. Successful exploitation could allow attackers to gain elevated privileges on the system if the deployment descriptor security constraints are combined with ServletSecurity annotations on a servlet.