Security Bulletin
Summary
The Java serialization attack on Apache Commons Collections (CVE-2015-7450) affects the configuration of IBM WebSphere Application Server Liberty Profile shipped as an embedded component of IBM i2 Intelligence Analysis Platform / IBM i2 Analyze.
Vulnerability Details
Please consult the security bulletin Vulnerability in Apache Commons affects IBM WebSphere Application Server (CVE-2015-7450).
Affected Products and Versions
|
Principal Product and Version(s) | Affected Supporting Product and Version |
| IBM i2 Intelligence Analysis Platform 3.0.11 | WebSphere Liberty 8.5.5.5 |
| IBM i2 Analyze 4.0.0 | WebSphere Liberty 8.5.5.6 |
Remediation/Fixes
Apply the fix described in the Security Bulletin above.
Get Notified about Future Security Bulletins
References
*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.
Disclaimer
Review the IBM security bulletin disclaimer and definitions regarding your responsibilities for assessing potential impact of security vulnerabilities to your environment.
Was this topic helpful?
Document Information
Modified date:
16 June 2018
UID
swg21971913