Medium Severity
Security Bulletin: WebSphere Application Server Admin Console is vulnerable to cross-site scripting (CVE-2020-4578)
Sep 9, 2020 8:00 pm EDT
Categorized: Medium Severity
Share this post:
WebSphere Application Server Admin Console is vulnerable to cross-site scripting. This has been addressed.
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| WebSphere Application Server | 9.0 |
| WebSphere Application Server | 8.5 |
| WebSphere Application Server | 8.0 |
| WebSphere Application Server | 7.0 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6328895
Security Bulletin: Multiple vulnerabilites affect IBM Engineering products.
Feb 26, 2021 7:01 pm EST | Medium Severity
There are multiple vulnerabilities that are used by IBM Jazz Team Server affecting the following IBM Jazz Team Server based Applications: Engineering Lifecycle Management (ELM), Global Configuration Management (GCM), IBM Engineering Requirements Management DOORS Next (DOORS Next), IBM Engineering Requirements Quality Assistant On-Premises (RQA On-Prem), IBM Engineering Lifecycle Optimization - Engineering Insights (ENI), IBM Engineering Workflow Management (EWM), IBM Engineering Systems Design Rhapsody - Design Manager (RDM), IBM Engineering Systems Design Rhapsody - Model Manager (RMM). ...read more
Security Bulletin: IBM Cloud Private is vulnerable to Kubernetes vulnerabilities (CVE-2020-8566, CVE-2020-8565, CVE-2020-8563, CVE-2020-8564)
Feb 26, 2021 7:01 pm EST | Medium Severity
IBM Cloud Private is vulnerable to Kubernetes vulnerabilities ...read more
Security Bulletin: IBM Cloud Private is vulnerable to a WebSphere Application Server Liberty vulnerability (CVE-2020-4590)
Feb 26, 2021 7:01 pm EST | Medium Severity
IBM Cloud Private is vulnerable to a WebSphere Application Server Liberty vulnerability ...read more