High Severity

IBM Security Bulletin: Code execution vulnerability with OpenID connect in WebSphere Application Server Liberty affects IBM WebSphere Application Server in IBM Cloud (CVE-2018-1851)

Share this post:

There is a potential code execution vulnerability in OpenID connect in WebSphere Application Server Liberty.

CVE(s): CVE-2018-1851

Affected product(s) and affected version(s):

This vulnerability affects the following versions and releases of IBM WebSphere Application Server:

  • Liberty

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10742809
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/150999

More stories

IBM Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU – Apr 2019 – Includes Oracle Apr 2019 CPU affects IBM Tivoli Composite Application Manager for Transactions-Robotic Response Time

Jul 22, 2019 9:01 am EDT | High Severity

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 ,version 8, that is used by IBM Tivoli Composite Application Manager for Transactions – Robotic Response Time. These issues were disclosed as part of the IBM Java SDK updates in April 2019. CVE(s): CVE-2019-10245, CVE-2019-2684, CVE-2019-2602, CVE-2019-2697, CVE-2019-2698, CVE-2019-2699 Affected product(s) and affected ...read more


IBM Security Bulletin: Vulnerability in IBM Java Runtime affecting Tivoli Netcool/OMNIbus (CVE-2019-2602)

Jul 20, 2019 9:01 am EDT | High Severity

There is a vulnerability in IBM® Runtime Environment Java™ Technology Edition, Version 8 that is used by Tivoli Netcool/OMNIbus. This were disclosed as part of the IBM Java SDK update in April 2019. CVE(s): CVE-2019-2602 Affected product(s) and affected version(s): Tivoli Netcool/OMNIbus 8.1.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source ...read more


IBM Security Bulletin: IBM Netcool Agile Service Manager is affected by an Apache Zookeeper vulnerability (CVE-2019-0201)

Jul 19, 2019 9:02 am EDT | High Severity

IBM Netcool Agile Service Manager has addressed the following vulnerability in Apache ZooKeeper. CVE(s): CVE-2019-0201 Affected product(s) and affected version(s): Affected IBM Netcool Agile Service Manager Affected Versions IBM Netcool Agile Service Manager 1.1 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10958553X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/161303 ...read more