Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM11A48BDEC7C322728D5C38E2A65C6152345555E3DC5223860FFCEB2424F46D5E
HistoryAug 19, 2022 - 9:04 p.m.

Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with IBM Intelligent Operations Center (CVE-2016-8919)

2022-08-1921:04:31
www.ibm.com
6

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

60.4%

JSON

Summary

IBM WebSphere Application Server is shipped with IBM Intelligent Operations Center. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.

Vulnerability Details

Consult the security bulletin, Security Bulletin: Denial of Service with WebSphere Application Server (CVE-2016-8919), for vulnerability details and information about fixes.

Affected Products and Versions

Principal Product and Versions Affected Supporting Products
IBM Intelligent Operations Center V1.5, V1.5.0.1, V1.5.0.2, V1.6, V1.6.0.1, V1.6.0.2, and V1.6.0.3 IBM WebSphere Application Server V7.0
IBM Intelligent City Planning and Operations V1.5, or later
IBM Intelligent Operations Center for Emergency Management V1.6
IBM Intelligent Operations for Transportation V1.5.0, or later
IBM Intelligent Operations for Water V1.5.0, or later

Remediation/Fixes

Download the correct version of the fix from the following link: Security Bulletin: Denial of Service with WebSphere Application Server (CVE-2016-8919). Installation instructions for the fix are included in the readme document that is in the fix package.

Related

ibm 54
nessus 1
cve 1
prion 1
openvas 1
ibm
ibm
Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with IBM InfoSphere Global Name Management (CVE-2016-8919)
2022-04-20 17:04:55
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server that is shipped with IBM Rational ClearQuest (CVE-2016-8919)
2020-02-04 16:40:40
Security Bulletin: A security vulnerability has been identified in Tivoli Integrated Portal shipped with IBM Tivoli Storage Manager FastBack for Workstations (CVE-2016-8919)
2018-06-17 15:35:51
nessus
nessus
IBM WebSphere Application Server 7.0.0.x < 7.0.0.43 / 8.0.0.x < 8.0.0.14 / 8.5.x < 8.5.5.12 / 9.0.0.x < 9.0.0.4 SOAP Connectors DoS
2017-08-18 00:00:00
cve
cve
CVE-2016-8919
2017-02-01 22:59:00
prion
prion
Denial of service
2017-02-01 22:59:00
openvas
openvas
IBM Websphere Application Server XSS and DoS Vulnerability
2017-02-14 00:00:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

60.4%

JSON
Related for 11A48BDEC7C322728D5C38E2A65C6152345555E3DC5223860FFCEB2424F46D5E
ibm54nessus1cve1prion1openvas1