Lucene search

K
ibmIBM13C40A6CBE05F1EBC98A3343C46231D7A4A26A1F59A30B9A4442C8D192AAF443
HistoryAug 19, 2020 - 1:28 p.m.

Security Bulletin: WebSphere Application Server shipped with Jazz for Service Management (JazzSM) is vulnerable to CVE-2020-4449

2020-08-1913:28:54
www.ibm.com
8
websphere application server
jazz for service management
ibm tivoli common reporting
cve-2020-4449
information disclosure
interim fix

EPSS

0.023

Percentile

89.8%

Summary

Information disclosure in WebSphere Application Server. This has been addressed.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section

Affected Products and Versions

Affected Product(s) Version(s)
IBM Tivoli Common Reporting All

Remediation/Fixes

Principal Product and Version(s) Affected Supporting Product and Version Affected Supporting Product Security Bulletin
Jazz for Service Management version 1.1.3 - 1.1.3.7 Websphere Application Server Full Profile 8.5.5 Security Bulletin: WebSphere Application Server is vulnerable to an information exposure vulnerability (CVE-2020-4449)

Workarounds and Mitigations

Please refer to WAS interim fix.

EPSS

0.023

Percentile

89.8%

Related for 13C40A6CBE05F1EBC98A3343C46231D7A4A26A1F59A30B9A4442C8D192AAF443