6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
Vulnerabilities in Websphere Liberty server (WLP) affects IBM Cloud Application Business Insights
CVEID:CVE-2020-4590
**DESCRIPTION:**IBM WebSphere Application Server Liberty 17.0.0.3 through 20.0.0.9 running oauth-2.0 or openidConnectServer-1.0 server features is vulnerable to a denial of service attack conducted by an authenticated client. IBM X-Force ID: 184650.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/184650 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H)
Affected Product(s) | Version(s) |
---|---|
IBM Cloud Application Business Insights | 1.1.3 |
IBM Cloud Application Business Insights | 1.1.4 |
IBM Cloud Application Business Insights | 1.1.5 |
The Vulnerabilities can be remediated by applying the ICABI FixPack 1.1.3.2 to all systems where IBM Cloud Application Business Insights version 1.1.3 is installed.
The Vulnerabilities can be remediated by applying the ICABI FixPack 1.1.4.3 to all systems where IBM Cloud Application Business Insights version 1.1.4 is installed.
The Vulnerabilities can be remediated by applying the ICABI FixPack 1.1.5.2 to all systems where IBM Cloud Application Business Insights version 1.1.5 is installed.
The fixes can be found at the following location-
**NOTE:**It is recommended to apply previous ICABI Fixpack(s) first as per the IBM Cloud Application Business Insights version installed.
None
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P