Download
Downloadable File
| File link | File size | File description |
|---|---|---|
Abstract
IBM WebSphere Application Server Liberty is vulnerable to Identity Spoofing (CVE-2022-22475 CVSS 7.1)
Download Description
PH46072 resolves the following problem:
ERROR DESCRIPTION:
IBM WebSphere Application Server Liberty is vulnerable to Identity Spoofing (CVE-2022-22475 CVSS 7.1)
PROBLEM SUMMARY:
IBM WebSphere Application Server Liberty is vulnerable to Identity Spoofing (CVE-2022-22475 CVSS 7.1)
PROBLEM CONCLUSION:
Confidential for CVE-2022-22475.
The fix for this APAR is currently targeted for inclusion in fix pack Liberty 22.0.0.6.
For more information, see 'Recommended Updates for WebSphere Application Server':
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980
ERROR DESCRIPTION:
IBM WebSphere Application Server Liberty is vulnerable to Identity Spoofing (CVE-2022-22475 CVSS 7.1)
PROBLEM SUMMARY:
IBM WebSphere Application Server Liberty is vulnerable to Identity Spoofing (CVE-2022-22475 CVSS 7.1)
PROBLEM CONCLUSION:
Confidential for CVE-2022-22475.
The fix for this APAR is currently targeted for inclusion in fix pack Liberty 22.0.0.6.
For more information, see 'Recommended Updates for WebSphere Application Server':
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980
Prerequisites
None
Installation Instructions
Review the readme.txt for detailed installation instructions.
| URL | SIZE (Bytes) |
|---|---|
| Archive readme files | |
| 22.0.0.5 Archive readme file | 2345 |
| 22.0.0.3 Archive readme file | 2345 |
| 21.0.0.12 Archive readme file | 2329 |
| IM readme files | |
| 22.0.0.5 readme file | 2159 |
| 21.0.0.12 readme file | 2152 |
Download Package
Important note: WebSphere Application Server and Liberty fix access requires S&S Entitlement in 2021. Use properly registered IDs to download the fixes in this table.
| DOWNLOAD | RELEASE DATE | SIZE (BYTES) |
URL
|
|---|---|---|---|
| Archive fix files | |||
| 22005-wlp-archive-IFPH46072 | 12 May 2022 | 1255098 | FC |
| 22003-wlp-archive-IFPH46072 | 12 May 2022 | 1254950 | FC |
| 210012-wlp-archive-IFPH46072 | 12 May 2022 | 1251951 | FC |
| IM fix files | |||
| 22.0.0.5-WS-WLP-IFPH46072 | 12 May 2022 | 1316123 | FC |
| 22.0.0.3-WS-WLP-IFPH46072 | 12 May 2022 | 1316081 | FC |
| 21.0.0.12-WS-WLP-IFPH46072 | 12 May 2022 | 1312888 | FC |
Note: FC stands for Fix Central. Review the What is Fix Central (FC)? FAQs for more details.
Problems Solved
PH46072
Change History
20 July 2022: Updated CVSS from 5.0 to 7.1
On
Technical Support
Contact IBM Support at https://www.ibm.com/software/mysupport/s/ or 1-800-IBM-SERV (US only).
Document Location
Worldwide
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"},{"code":"PF010","label":"HP-UX"},{"code":"PF017","label":"Mac OS"},{"code":"PF027","label":"Solaris"}],"Version":"21.0.0.12;22.0.0.3;22.0.0.5","Edition":"Base","Line of Business":{"code":"LOB45","label":"Automation"}}]
Problems (APARS) fixed
Problems (APARS) fixed
Was this topic helpful?
Document Information
Modified date:
20 July 2022
UID
ibm16586668