This patch provides an update for the IBM Tivoli Monitoring (ITM) WebSphere components.
This fix upgrades the WebSphere Application Server (eWAS) and IHS which is shipped as part of the IBM Tivoli Monitoring portal server, to version 184.108.40.206 plus additional Interim Fixes referred to as Interim Fix Block 1. Note this is cumulative and includes previous Interim fixes plus the additional fixes below.
The Interim Fixes included as part of Interim Fix Block 1 include:
PH25074:WebSphere Application Server IIOP Deserialization Vulnerability (CVE-2020-4449 and CVE-2020-4450)
PH18947:Information Disclosure in WebSphere Application Server Admin Console (CVE-2019-4670)
PH17557: WebSphere Application Server Admin Console needs updated Apache Commons beanutils library (CVE-2019-10086)
PH20785: WebSphere Application Server is vulnerable to command execution (CVE-2020-4163)
|IBM Tivoli Monitoring 6.3.0 Fix Pack 7 Service Pack 5||https://www.ibm.com/support/pages/node/6174183||English|
|Download||Release Date||Language||Download Options
What is Fix Central(FC)
|6.X.X-TIV-ITM_TEPS_EWAS-IHS_ALL_8.55.17.01||23 September 2020||English||FC|
How critical is this fix?
|Created/Revised By||Date (YYYY/MM/DD)||Summary of changes|
23 September 2020