Medium Severity

IBM Security Bulletin: Security Bulletin: IBM MessageSight is affected by an IBM WebSphere Liberty expression language vulnerability

Share this post:

IBM MessageSight has addressed the following vulnerability. Apache Tomcat could allow a remote attacker to bypass security restrictions, caused by the use of expression language. An attacker could exploit this vulnerability to bypass the protections of a Security Manager.

CVE(s): CVE-2014-7810

Affected product(s) and affected version(s):

Affected IBM MessageSight Affected Versions
IBM MessageSight –
IBM MessageSight –

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin:
X-Force Database:

More stories

Security Bulletin: HTTP Header Vulnerability Affects IBM Sterling Connect:Direct Browser User Interface (CVE-2021-20560)

Jul 27, 2021 8:26 pm EDT | Medium Severity

There are issue with HTTP header 'X-Frame-Options' not present. IBM Sterling Connect:Direct Browser has addressed the applicable CVEs. more

Security Bulletin: Information disclosure vulnerability in IBM i2 Analyze (CVE-2021-29766)

Jul 27, 2021 8:20 pm EDT | Medium Severity

In certain situations more information than is necessary is communicated via error messages or requests more

Security Bulletin: i2 Analyse and Analyst's Notebook Premium have hyperlink clicking vulnerability (CVE-2021-29770)

Jul 27, 2021 8:15 pm EDT | Medium Severity

IBM i2 Analyse and Analyst's Notebook Premium are vulnerable to malicious hyperlinks in certain data fields more