June 10, 2022
Categorized: Medium Severity
Share this post:
Liberty for Java for IBM Cloud is vulnerable to identity spoofing with the appSecurity-1.0, appSecurity-2.0, appSecurity-3.0 or appSecurity-4.0 feature enabled. This has been addressed.
Affected product(s) and affected version(s):
These vulnerabilities affect all versions of Liberty for Java for IBM Cloud up to and including v3.69.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6594153
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/225603