Medium Severity

IBM Security Bulletin: A vulnerability in IBM WebSphere Application Server affects IBM PureApplication System

Share this post:

A vulnerability in IBM WebSphere Application Server affects PureApplication System. IBM PureApplication System has addressed this vulnerability.

CVE(s): CVE-2018-1901

Affected product(s) and affected version(s):

IBM PureApplication System V2.2.3.0
IBM PureApplication System V2.2.3.1
IBM PureApplication System V2.2.3.2
IBM PureApplication System V2.2.4.0
IBM PureApplication System V2.2.5.0
IBM PureApplication System V2.2.5.1
IBM PureApplication System V2.2.5.2
IBM PureApplication System V2.2.5.3

The affected WebSphere Application Server versions are:

IBM WebSphere Application Server Traditional v8.5
IBM WebSphere Application Server Liberty v9

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10885606
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152530

More stories

IBM Security Bulletin: Information disclosure vulnerability in WebSphere Application Server (CVE-2019-4477)

Sep 16, 2019 5:11 pm EDT | Medium Severity

There is an information disclosure in WebSphere Application Server when using Security Auditing. CVE(s): CVE-2019-4477 Affected product(s) and affected version(s): This vulnerability affects the following versions and releases of IBM WebSphere Application Server: Version 9.0 Version 8.5 Version 8.0 Version 7.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www.ibm.com/support/pages/node/960290X-Force ...read more


IBM Security Bulletin: Cross-site scripting vulnerability in WebSphere Application Server Admin Console (CVE-2019-4270)

Sep 16, 2019 5:11 pm EDT | Medium Severity

There is a potential denial of service in the Admin Console of WebSphere Application Server. CVE(s): CVE-2019-4270 Affected product(s) and affected version(s): This vulnerability affects the following versions and releases of IBM WebSphere Application Server: Version 9.0 Version 8.5 Version 8.0 Version 7.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source ...read more


IBM Security Bulletin: Path traversal vulnerability in WebSphere Application Server Admin Console (CVE-2019-4442)

Sep 16, 2019 3:52 pm EDT | Medium Severity

There is a path traversal vulnerability in the Admin Console of WebSphere Application Server. CVE(s): CVE-2019-4442 Affected product(s) and affected version(s): This vulnerability affects the following versions and releases of IBM WebSphere Application Server: Version 9.0 Version 8.5 Version 8.0 Version 7.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: ...read more