IBM Support

PH34690:Privilege Escalation Vulnerability in WebSphere Application Server (CVE-2021-29736 CVSS 5.0)

Download


Downloadable File

Abstract

Privilege Escalation Vulnerability in WebSphere Application Server (CVE-2021-29736 CVSS 5.0)

Download Description

PH34690 resolves the following problem:

ERROR DESCRIPTION:
Privilege Escalation Vulnerability in WebSphere Application Server (CVE-2021-29736 CVSS 5.0)

PROBLEM SUMMARY:
Privilege Escalation Vulnerability in WebSphere Application Server (CVE-2021-29736 CVSS 5.0)

PROBLEM CONCLUSION:
Confidential for CVE-2021-29736 CVSS 5.0.

The fix for this APAR is targeted for inclusion in fix packs 8.5.5.21 and 9.0.5.9.

For more information, see 'Recommended Updates for WebSphere Application Server':
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

Prerequisites

None

Installation Instructions

Review the readme.txt for detailed installation instructions.

URL SIZE(Bytes)
V90 readme file 2314
V85 readme file 2424
V80 readme file 2252
V70 readme file 4939

Download Package

 
IMPORTANT NOTE:
WebSphere Application Server and Liberty fix access requires S&S Entitlement in 2021. Use properly registered IDs to download the fixes in this table. 
DOWNLOAD RELEASE DATE SIZE(Bytes) APPLICABLE Fixpack(s)

DOWNLOAD Options

What is Fix Central(FC)?

9.0.0.4-WS-WAS-IFPH34690 15 July 2021 390472 9.0.0.4 through 9.0.5.8 FC
8.5.5.12-WS-WAS-IFPH34690 15 July 2021 380606 8.5.5.12 through 8.5.5.20 FC
8.0.0.15-WS-WAS-IFPH34690 15 July 2021 368982 8.0.0.15 FC
7.0.0.45-WS-WAS-MultiOS-IFPH34690 15 July 2021 116871 7.0.0.45 FC

Problems Solved

PH34690

On

Technical Support

Contact IBM Support at https://www.ibm.com/software/mysupport/s/ or 1-800-IBM-SERV (US only).

Document Location

Worldwide

[{"Type":"MASTER","Line of Business":{"code":"LOB36","label":"IBM Automation"},"Business Unit":{"code":"BU053","label":"Cloud \u0026 Data Platform"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"ARM Category":[{"code":"a8m0z0000001j54AAA","label":"Download Documents - L3 Publishing Category"}],"ARM Case Number":"","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"7.0.0;8.0.0;8.5.5;9.0.0"}]

Document Information

Modified date:
04 August 2021

UID

ibm16473705