Download
Downloadable File
File link | File size | File description |
---|---|---|
Abstract
IBM WebSphere Application Server is vulnerable to Server-side Request Forgery (CVE-2022-35282 CVSS 4.3)
Download Description
PH47385 resolves the following problem:
ERROR DESCRIPTION:
IBM WebSphere Application Server is vulnerable to Server-side Request Forgery (CVE-2022-35282 CVSS 4.3)
LOCAL FIX:
PROBLEM SUMMARY:
IBM WebSphere Application Server is vulnerable to Server-side Request Forgery (CVE-2022-35282 CVSS 4.3)
PROBLEM CONCLUSION:
Confidential for CVE-2022-35282 CVSS 4.3.
The fix for this APAR is currently targeted for inclusion
in fix packs 8.5.5.23 and 9.0.5.14.
For more information, see 'Recommended Updates for WebSphere Application Server':
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980
ERROR DESCRIPTION:
IBM WebSphere Application Server is vulnerable to Server-side Request Forgery (CVE-2022-35282 CVSS 4.3)
LOCAL FIX:
PROBLEM SUMMARY:
IBM WebSphere Application Server is vulnerable to Server-side Request Forgery (CVE-2022-35282 CVSS 4.3)
PROBLEM CONCLUSION:
Confidential for CVE-2022-35282 CVSS 4.3.
The fix for this APAR is currently targeted for inclusion
in fix packs 8.5.5.23 and 9.0.5.14.
For more information, see 'Recommended Updates for WebSphere Application Server':
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980
Prerequisites
None
Installation Instructions
Review the readme.txt for detailed installation instructions.
URL | SIZE(Bytes) |
---|---|
V90 readme | 2235 |
V85 readme | 2298 |
V80 readme | 2276 |
V70 readme | 4976 |
Download Package
IMPORTANT NOTE:
|
WebSphere Application Server and Liberty fix access requires S&S Entitlement beginning in 2021. Use properly registered IDs to download the fixes in this table.
|
DOWNLOAD | RELEASE DATE | SIZE(Bytes) |
DOWNLOAD Options |
---|---|---|---|
9.0.5.12-WS-WASProd-DistOnly-IFPH47385 | 26 September 2022 | 739302 | FC |
9.0.5.12-WS-WASProd-OS39064-IFPH47385 | 26 September 2022 | 750436 | FC |
8.5.5.21-WS-WASProd-DistOnly-IFPH47385 | 26 September 2022 | 736826 | FC |
8.5.5.21-WS-WASProd-OS390-IFPH47385 | 26 September 2022 | 747765 | FC |
8.0.0.15-WS-WASProd-DistOnly-IFPH47385 | 26 September 2022 | 734476 | FC |
8.0.0.15-WS-WASProd-OS390-IFPH47385 | 26 September 2022 | 743771 | FC |
8.0.0.15-WS-WASEmbeded-IFPH47385 | 26 September 2022 | 743771 | FC |
7.0.0.45-WS-WAS-IFPH47385 | 26 September 2022 | 520717 | FC |
Problems Solved
PH47385
On
Technical Support
Contact IBM Support at https://www.ibm.com/mysupport/ or 1-800-IBM-SERV (US only).
Document Location
Worldwide
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"7.0.0.45;8.0.0.15;8.5.5.21;8.5.5.22;9.0.5.12;9.0.5.13","Edition":"Base","Line of Business":{"code":"LOB45","label":"Automation"}}]
Problems (APARS) fixed
Was this topic helpful?
Document Information
Modified date:
27 September 2022
UID
ibm16823907