APAR status
Closed as program error.
Error description
Users can log into the console using a GET request for j_security_check
Local fix
Problem summary
**************************************************************** * USERS AFFECTED: All users of IBM WebSphere Application * * Server * * logging into the console using * * j_security_check * **************************************************************** * PROBLEM DESCRIPTION: Users can log into the console using a * * GET request for j_security_check * **************************************************************** * RECOMMENDATION: * **************************************************************** Users can log into the console using a GET request for j_security_check
Problem conclusion
Default settings in the console will prevent users from logging into the console by using a GET request for j_security_check. The fix for this APAR is targeted for inclusion in fix pack 8.5.5.19 and 9.0.5.6. For more information, see 'Recommended Updates for WebSphere Application Server': https://www.ibm.com/support/pages/node/715553
Temporary fix
Comments
APAR Information
APAR number
PH28097
Reported component name
WEBS APP SERV N
Reported component ID
5724H8800
Reported release
900
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2020-08-03
Closed date
2020-09-30
Last modified date
2020-09-30
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
WEBS APP SERV N
Fixed component ID
5724H8800
Applicable component levels
R850 PSY
UP
R900 PSY
UP
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"9.0","Line of Business":{"code":"LOB45","label":"Automation"}}]
Document Information
Modified date:
02 November 2021