Low Severity

Security Bulletin: Multiple Security Vulnerabilities Affect IBM WebSphere Application Server in IBM Cloud

Share this post:

There are multiple security vulnerabilities that affect the IBM WebSphere Application Server in the IBM Cloud. WebSphere Application Server traditional is vulnerable to a remote code execution vulnerability. WebSphere Application Server is vulnerable to a remote code execution vulnerability. There are multiple vulnerabilities in the IBM® SDK, Java™ Technology Edition that is shipped with IBM WebSphere Application Server. WebSphere Application Server is vulnerable to a remote code execution vulnerability. There is a server-side request forgery vulnerability in the Apache Batik library which is used by WebSphere Application Server.

Affected product(s) and affected version(s):

These vulnerabilities affect the following versions and releases of IBM WebSphere Application Server in IBM Cloud:

  • Version 9.0
  • Version 8.5

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6327411

More stories

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in TensorFlow 

Feb 27, 2021 7:00 pm EST | Low Severity

IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of TensorFlow . ...read more


Security Bulletin: IBM Cloud Private is vulnerable to a Java vulnerability (CVE-2020-14782)

Feb 26, 2021 7:01 pm EST | Low Severity

IBM Cloud Private is vulnerable to a Java vulnerability ...read more


Security Bulletin: Vulnerabilities in Linux Kernel affect IBM Spectrum Protect Plus

Feb 24, 2021 7:00 pm EST | Low Severity

Vulnerabilities in the Linux Kernel such as execution of arbitrary code, denial of service, bypassing security restrictions, and obtaining or disclosing of information may affect IBM Spectrum Protect Plus. ...read more