Security Bulletin: Multiple vulnerabilities have been identified in WebSphere Application Server shipped with WebSphere Enterprise Service Bus (CVE-2015-1283, CVE-2015-3183)

Created by Adam Clark on Thu, 10/15/2015 - 08:55

Published URL:

https://www.ibm.com/support/pages/node/710701

710701

Security Bulletin

Summary

WebSphere Application Server is shipped as a component of WebSphere Enterprise Service Bus. Information about the security vulnerabilities affecting WebSphere Application Server have been published in a security bulletin.

Vulnerability Details

Please consult the security bulletins Denial of service may affect IBM HTTP Server and HTTP Request smuggling vulnerability may affect IBM HTTP Server for vulnerability details and information about fixes.

Affected Products and Versions

WebSphere Enterprise Service Bus v6.2
WebSphere Enterprise Service Bus v7.0
WebSphere Enterprise Service Bus v7.5

Get Notified about Future Security Bulletins

Subscribe to My Notifications to be notified of important product support alerts like this.

References

Complete CVSS v2 Guide
On-line Calculator v2

Off

Change History

22 October 2015: Original Version Published

*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

Disclaimer

Review the IBM security bulletin disclaimer and definitions regarding your responsibilities for assessing potential impact of security vulnerabilities to your environment.

[{"Product":{"code":"SS7J6S","label":"WebSphere Enterprise Service Bus"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"Security","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"7.5;7.0;6.2","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]

Tips

Security Bulletin: Multiple vulnerabilities have been identified in WebSphere
Application Server shipped with WebSphere Enterprise Service Bus (CVE-2015-1283, CVE-2015-3183)

Security Bulletin

Summary

Vulnerability Details

Affected Products and Versions

Get Notified about Future Security Bulletins

References

Change History

Disclaimer

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?

Tips

Security Bulletin: Multiple vulnerabilities have been identified in WebSphere Application Server shipped with WebSphere Enterprise Service Bus (CVE-2015-1283, CVE-2015-3183)

Security Bulletin

Summary

Vulnerability Details

Affected Products and Versions

Get Notified about Future Security Bulletins

References

Related Information

Change History

Disclaimer

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?

Security Bulletin: Multiple vulnerabilities have been identified in WebSphere
Application Server shipped with WebSphere Enterprise Service Bus (CVE-2015-1283, CVE-2015-3183)