IBM Support

PH12325:File traversal vulnerability in WebSphere Application Server Admin Console CVE-2019-4268

Download


Downloadable File

Abstract

File traversal vulnerability in WebSphere Application Server Admin Console (CVE-2019-4268)

Download Description

PH12325 resolves the following problem:
ERROR DESCRIPTION:
File traversal vulnerability in WebSphere Application Server Admin Console (CVE-2019-4268).
PROBLEM SUMMARY:
File traversal vulnerability in WebSphere Application Server Admin Console (CVE-2019-4268).
PROBLEM CONCLUSION:
File traversal vulnerability in WebSphere Application Server Admin Console (CVE-2019-4268).
The fix for this APAR is currently targeted for inclusion in fix pack 8.5.5.17 and 9.0.5.1.  Please refer to the Recommended Updates page for delivery information: 
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

Prerequisites

Please download the UpdateInstaller below to install this fix.

URL SIZE(Bytes)
UpdateInstaller 7250000

Installation Instructions

Please review the readme.txt for detailed installation instructions.

URL SIZE(Bytes)
V80 Readme 2303
V85 Readme 2336
V90 Readme 2165
V70 Readme 4995

Download Package

DOWNLOAD RELEASE DATE SIZE(Bytes)

DOWNLOAD Options

What is Fix Central(FC)?

7.0.0.45-WS-WAS-IFPH12325 09-10-2019 26958 FC
8.0.0.15-WS-WAS-IFPH12325 09-10-2019 306632 FC
8.5.5.13-WS-WASProd-IFPH12325 09-10-2019 295678 FC
8.5.5.15-WS-WASProd-IFPH12325 09-10-2019 294205 FC
8.5.5.16-WS-WASProd-IFPH12325 09-10-2019 281491 FC
9.0.0.8-WS-WASProd-IFPH12325 09-10-2019 295202 FC
9.0.0.10-WS-WASProd-IFPH12325 09-10-2019 295280 FC
9.0.5.0-WS-WASProd-IFPH12325 09-10-2019 281174 FC

Problems Solved

PH12325

On

Technical Support

Contact IBM Support using SR (http://www.ibm.com/software/support/probsub.html), visit the support web site, or contact 1-800-IBM-SERV (U.S. only).

Document Location

Worldwide

[{"Business Unit":{"code":"BU004","label":"Hybrid Cloud"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z/OS"}],"Version":"7.0.0.45;8.0.0.15;8.5.5.13;8.5.5.14;8.5.5.15;8.5.5.16;9.0.0.10;9.0.0.11;9.0.0.8;9.0.0.9;9.0.5.0","Edition":"Advanced,Base,Developer,Enterprise,Express,Network Deployment,Single Server"}]

Document Information

Modified date:
16 September 2019

UID

ibm11073546