IBM WebSphere Application Multiple Vulnerabilities
Last Update Date:
24 Mar 2020 15:28
Release Date:
24 Mar 2020
4476
Views
RISK: Medium Risk
TYPE: Servers - Internet App Servers
Multiple vulnerabilities were identified in IBM WebSphere Application Server, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, obtain sensitive information, cross-site scripting and bypass security restriction on the targeted system.
Impact
- Cross-Site Scripting
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
- IBM WebSphere Application Server Liberty 17.0.0.3 - 20.0.0.1
- IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- For detail, please refer to the link below:
https://www.ibm.com/support/pages/node/6113998
Vulnerability Identifier
- CVE-2019-12406
- CVE-2019-17495
- CVE-2019-4663
- CVE-2019-4670
- CVE-2019-4720
- CVE-2019-4732
- CVE-2020-2583
- CVE-2020-2593
- CVE-2020-2604
- CVE-2020-2659
- CVE-2020-4163
Source
Related Link
- https://www.ibm.com/support/pages/node/6113998
- https://www.ibm.com/support/pages/node/1127367
- https://www.ibm.com/support/pages/node/1274596
- https://www.ibm.com/support/pages/node/1285372
- https://www.ibm.com/support/pages/node/1289152
- https://www.ibm.com/support/pages/node/1288774
- https://www.ibm.com/support/pages/node/1288786
- https://www.ibm.com/support/pages/node/1289194
- https://www.auscert.org.au/bulletins/ESB-2020.1019/
Share with