IBM WebSphere Application Server and IBM WebSphere Application Server Liberty XML External Entity Injection Vulnerability

IBM WebSphere Application Server (WAS) and IBM WebSphere Application Server Liberty are both products of International Business Machines (IBM).IBM WebSphere Application Server is an application server IBM WebSphere Application Server is an application server product. The product is a platform for JavaEE and Web services applications and is the foundation of the IBM WebSphere software platform.IBM WebSphere Application Server Liberty is a Java application server built on top of the Open Liberty project. An XML external entity injection vulnerability exists in IBM WebSphere Application Server and IBM WebSphere Application Server Liberty, which can be exploited by an attacker to obtain sensitive information, consume memory resources, or perform server-side request forgery attacks.