IBM WebSphere Application Server Multiple Vulnerabilities
Release Date:
20 Dec 2021
5404
Views
RISK: Medium Risk
TYPE: Servers - Internet App Servers
Multiple vulnerabilities were identified in IBM WebSphere Application Server. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution and denial of service condition on the targeted system.
Impact
- Remote Code Execution
- Denial of Service
System / Technologies affected
- WebSphere Application Server Liberty 17.0.0.3 to 21.0.0.12 using the zosConnect-1.0 or zosConnect-1.2 feature
- WebSphere Application Server version 9.0.0.0 through 9.0.5.10
- WebSphere Application Server version 8.5.0.0 through 8.5.5.20
- WebSphere Application Server version 8.0.0.0 through 8.0.0.15
- WebSphere Application Server version 7.0.0.0 through 7.0.0.45
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
https://www.ibm.com/support/pages/node/6526750
Vulnerability Identifier
Source
Related Link
Share with