Download
Downloadable File
| File link | File size | File description |
|---|---|---|
Abstract
IBM WebSphere Application Server is vulnerable to cross-site scripting in the Admin Console (CVE-2023-24966 CVSS 6.1)
Download Description
PH52785 resolves the following problem:
ERROR DESCRIPTION:
Confidential for Security Integrity interim fix CVE-2023-24966.
PROBLEM SUMMARY:
Confidential for Security Integrity interim fix CVE-2023-24966.
PROBLEM CONCLUSION:
Confidential for CVE-2023-24966.
The fix for this APAR is targeted for inclusion in 8.5.5.24 and 9.0.5.16.
For more information, see Recommended Updates for WebSphere Application Server:
https://www.ibm.com/support/pages/node/715553
This fix supersedes (includes) the fix for PH01621, PH46332, PH50116
ERROR DESCRIPTION:
Confidential for Security Integrity interim fix CVE-2023-24966.
PROBLEM SUMMARY:
Confidential for Security Integrity interim fix CVE-2023-24966.
PROBLEM CONCLUSION:
Confidential for CVE-2023-24966.
The fix for this APAR is targeted for inclusion in 8.5.5.24 and 9.0.5.16.
For more information, see Recommended Updates for WebSphere Application Server:
https://www.ibm.com/support/pages/node/715553
This fix supersedes (includes) the fix for PH01621, PH46332, PH50116
Prerequisites
None
Installation Instructions
Review the readme.txt for detailed installation instructions.
| URL | SIZE(Bytes) |
|---|---|
| V90 readme file | 2379 |
| V85 readme file | 2553 |
Download Package
|
IMPORTANT NOTE:
|
WebSphere Application Server and Liberty fix access requires S&S Entitlement beginning in 2021. Use properly registered IDs to download the fixes in this table.
Signature file is provided along with interim fix. See Verifying WebSphere Application Server release packages and Verifying Liberty release packages. |
| DOWNLOAD | RELEASE DATE | SIZE(Bytes) | APPLICABLE FIXPACKS |
URL |
|---|---|---|---|---|
| 9.0.0.0-WS-WAS-IFPH52785 | 25 April 2023 | 330244 | 9.0.0.0 through 9.0.5.15 | FC |
| 8.5.5.0-WS-WAS-IFPH52785 | 25 April 2023 | 325064 | 8.5.5.0 through 8.5.5.23 | FC |
Note: FC stands for Fix Central. Review the What is Fix Central (FC)? FAQs for more details.
Problems Solved
PH52785, PH01621, PH46332, PH50116
On
Technical Support
Contact IBM Support at https://www.ibm.com/mysupport/ or 1-800-IBM-SERV (US only).
Document Location
Worldwide
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"9.0.5.15;9.0.5.14;9.0.5.13;9.0.5.12;9.0.5.11;9.0.5.10;9.0.5.9;9.0.5.8;9.0.5.7;9.0.5.6;9.0.5.5;9.0.5.4;9.0.5.3;9.0.5.2;9.0.5.1;9.0.5.0;9.0.0.11;9.0.0.10;9.0.0.9;9.0.0.8;9.0.0.7;9.0.0.6;9.0.0.5;9.0.0.4;9.0.0.3;8.5.5.19;8.5.5.18;8.5.5.17;8.5.5.16;8.5.5.15;8.5.5.14;8.5.5.13;8.5.5.12;8.5.5.11;8.5.5.10;8.5.5.9;8.5.5.8;8.5.5.7;8.5.5.6;8.5.5.5;8.5.5.4;8.5.5.3;8.5.5.2;8.5.5.1;8.5.5;9.0.0.2;9.0.0.1;9.0.0.0;8.5.5.23;8.5.5.22;8.5.5.21;8.5.5.20","Edition":"Base","Line of Business":{"code":"LOB45","label":"Automation"}}]
Problems (APARS) fixed
Problems (APARS) fixed
Was this topic helpful?
Document Information
Modified date:
26 April 2023
UID
ibm16986163