IBM23ACC7BB2569417276597C257401F3783EB07FD152C4689F7E77CADFC4EDD536Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Tivoli Federated Identity Manager and IBM Tivoli Federated Identity Manager Business Gateway (CVE-2017-1380)
0.001 Low
EPSS
Percentile
34.0%
Summary
IBM WebSphere Application Server is shipped as a component of IBM Tivoli Federated Identity Manager and IBM Tivoli Federated Identity Manager Business Gateway. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.
Vulnerability Details
Please consult the security bulletin, Cross-site scripting vulnerability in Admin Console for WebSphere Application Server (CVE-2017-1380), for vulnerability details and information about fixes.
Affected Products and Versions
Principal Product and Version(s)
| Affected Supporting Product and Version
—|—
IBM Tivoli Federated Identity Manager 6.2
IBM Tivoli Federated Identity Manager Business Gateway 6.2| IBM WebSphere Application Server 7.0
IBM Tivoli Federated Identity Manager 6.2.1
IBM Tivoli Federated Identity Manager Business Gateway 6.2.1| IBM WebSphere Application Server 7.0
IBM Tivoli Federated Identity Manager 6.2.2
IBM Tivoli Federated Identity Manager Business Gateway 6.2.2| IBM WebSphere Application Server 7.0, 8.0, 8.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| tivoli federated identity manager | eq | 6.2 | |
| tivoli federated identity manager | eq | 6.2.1 | |
| tivoli federated identity manager | eq | 6.2.2 |
Related
0.001 Low
EPSS
Percentile
34.0%