IBM1902113376E37AABD5EA9CBAD177DA92E3D8945A59617E15E0538E8FFFD39604Security Bulletin:A security vulnerability has been identified in IBM WebSphere Application Server affects Tivoli Business Service Manager (CVE-2015-1927)
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
Summary
IBM WebSphere Application Server is shipped as a component of Tivoli Business Service Manager. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.
Vulnerability Details
Please consult the security bulletin PI31622: Potential Security Vulnerability with serveServlets CVE-2015-1927 for vulnerability details and information about fixes.
Affected Products and Versions
Principal Product and Version(s)
| Affected Supporting Product and Version
—|—
Tivoli Business Service Manager 6.1.x| WebSphere 7.0
Remediation/Fixes
Principal Product and Version(s)
| Affected Supporting Product and Version
—|—
Tivoli Business Service Manager 6.1.x| WebSphere 7.0
Apply Fix Pack 39 (7.0.0.39), or later (targeted to be available 26 October 2015).
-- OR
- Apply Interim Fix PI31622
See Websphere Application Server Security Bulletin for more details:
<http://www-01.ibm.com/support/docview.wss?uid=swg21959083>
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| tivoli business service manager | eq | 6.1 | |
| tivoli business service manager | eq | 6.1.1 |
Related
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P