High Severity

Security Bulletin: Security vulnerabilities have been identified in IBM WebSphere Application Server used by IBM InfoSphere Master Data Management

Share this post:

WebSphere Application Server traditional is vulnerable to an XML External Entity (XXE) Injection vulnerability

CVE(s): CVE-2021-20453

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
InfoSphere Master Data Management 12.0
InfoSphere Master Data Management 11.6

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6465975
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/196648

More stories

Security Bulletin: FasterXML Vulnerability in Jackson-Databind Affects IBM Sterling Connect:Direct File Agent (CVE-2018-7489)

Jul 23, 2021 8:13 pm EDT | High Severity

There is a vulnerability in FasterXML jackson-databind used by IBM Sterling Connect:Direct File Agent. IBM Sterling Connect:Direct File Agent has addressed the applicable CVE. ...read more


Security Bulletin: Apache Commons Configuration Vulnerability Affects IBM Sterling Connect:Direct File Agent (CVE-2020-1953)

Jul 23, 2021 8:11 pm EDT | High Severity

There is a vulnerability in Apache Commons used by IBM Sterling Connect:Direct File Agent. IBM Sterling Connect:Direct File Agent has addressed the applicable CVE. ...read more


Security Bulletin: IBM i2 iBase vulnerable to DLL highjacking (CVE-2020-4623)

Jul 23, 2021 8:00 pm EDT | High Severity

i2 iBase is vulnerable to DLL highjacking attacks. ...read more