Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM328F3B5328548A036396C2A723E81D2154BAE6EA812619A9CD695E9344ED0E3C
HistoryApr 27, 2022 - 10:23 a.m.

Security Bulletin: Security vulnerabilities have been identified in IBM WebSphere Application Server used by IBM InfoSphere Master Data Management Server 11.6

2022-04-2710:23:01
www.ibm.com
9
ibm websphere
infosphere master data management
security bulletin
remote code execution

EPSS

0.036

Percentile

91.7%

JSON

Summary

IBM WebSphere Application Server 9.0 traditional could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects. IBM X-Force ID: 181231.

Vulnerability Details

CVEID:CVE-2020-4450
**DESCRIPTION:**IBM WebSphere Application Server 8.5 and 9.0 traditional could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects. IBM X-Force ID: 181231.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/181231 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
InfoSphere Master Data Management 11.6

Remediation/Fixes

Principal Product and Version(s) Affected Supporting Product and Version Affected Supporting Product Security Bulletin
InfoSphere Master Data Management 11.6 IBM WebSphere Application Server version 9.0.

Security Bulletin: WebSphere Application Server is vulnerable to a remote code execution vulnerability (CVE-2020-4450)

Workarounds and Mitigations

None

Affected configurations

Vulners
Node
ibminfosphere_master_data_managementMatch11.6
VendorProductVersionCPE
ibminfosphere_master_data_management11.6cpe:2.3:a:ibm:infosphere_master_data_management:11.6:*:*:*:*:*:*:*

Related

ibm 32
nessus 1
prion 1
zdi 1
cvelist 1
nvd 1
cve 1
githubexploit 1
ibm
ibm
Security Bulletin: A security vulnerability has been identified in WebSphereยฎ Application Server shipped with IBMยฎ Intelligent Operations Center (CVE-2020-4450)
2020-06-25 11:31:17
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM OpenPages with Watson (CVE-2020-4450)
2020-07-21 15:57:58
Security Bulletin: WebSphere Application Server is vulnerable to a remote code execution vulnerability (CVE-2020-4450)
2020-07-15 20:24:10
nessus
nessus
IBM WebSphere Application Server 8.5.x < 8.5.5.18 / 9.0.x < 9.0.5.5 RCE (CVE-2020-4450)
2020-06-12 00:00:00
prion
prion
Code injection
2020-06-05 17:15:00
zdi
zdi
IBM WebSphere Application Server IIOP Deserialization of Untrusted Data Remote Code Execution Vulnerability
2020-06-05 00:00:00
cvelist
cvelist
CVE-2020-4450
2020-06-05 12:55:18
nvd
nvd
CVE-2020-4450
2020-06-05 17:15:11
cve
cve
CVE-2020-4450
2020-06-05 17:15:11
githubexploit
githubexploit
Exploit for Deserialization of Untrusted Data in Ibm Websphere Application Server
2021-08-17 08:44:49

EPSS

0.036

Percentile

91.7%

JSON
Related for 328F3B5328548A036396C2A723E81D2154BAE6EA812619A9CD695E9344ED0E3C
ibm32nessus1prion1zdi1cvelist1nvd1cve1githubexploit1