Lucene search

K
ibm
IBM41AAC16DD55649610A7533A1CCFF752B9439D695AF4B531F93AD71CE90511A9B
HistoryJun 02, 2021 - 9:54 p.m.

Security Bulletin: Multiple vulnerabilities in Apache HttpComponents and HttpCommons affect WebSphere Application Server, which is shipped as part of IBM Cloud Pak for Applications (CVE-2015-5262, CVE-2014-3577, CVE-2012-6153, CVE-2011-1498)

2021-06-0221:54:02
www.ibm.com
6

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.033 Low

EPSS

Percentile

89.9%

Summary

Multiple vulnerabilities in Apache HttpComponents and HttpCommons affect WebSphere Application Server (CVE-2015-5262, CVE-2014-3577, CVE-2012-6153, CVE-2011-1498)

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section

Affected Products and Versions

Principal Product(s) and Version(s) Affected Supporting Product(s) and Version(s)
IBM Cloud Pak for Applications, all

WebSphere Application Server

  • 9
  • 8.5
  • 8

Remediation/Fixes

Multiple vulnerabilities in Apache HttpComponents and HttpCommons affect WebSphere Application Server

Workarounds and Mitigations

None

How to protect your server from attacks?

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.033 Low

EPSS

Percentile

89.9%

Related for 41AAC16DD55649610A7533A1CCFF752B9439D695AF4B531F93AD71CE90511A9B