Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with IBM Tivoli System Automation Application Manager (CVE-2017-1380)

2018-09-2920:24:25

www.ibm.com

0.001 Low

EPSS

Percentile

34.0%

JSON

Summary

WebSphere Application Server is shipped with IBM Tivoli System Automation Application Manager. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section.

Affected Products and Versions

IBM Tivoli System Automation Application Manager 4.1.0.0 – 4.1.0.1

Remediation/Fixes

Refer to the following security bulletins for vulnerability details and information about fixes addressed by WebSphere Application Server which is shipped with IBM Tivoli System Automation Application Manager.

Principal Product and Version(s)	Affected Supporting Product and Version	Affected Supporting Product Security Bulletin
IBM Tivoli System Automation Application Manager 4.1	WebSphere Application Server 8.5
*Security Bulletin: Cross-site scripting vulnerability in Admin Console for WebSphere Application Server (CVE-2017-1380)*

Workarounds and Mitigations

None

CPENameOperatorVersion
tivoli system automation application managereq3.2.2
tivoli system automation application managereq4.1

CPE	Name	Operator	Version
	tivoli system automation application manager	eq	3.2.2
	tivoli system automation application manager	eq	4.1

0.001 Low

EPSS

Percentile

34.0%

JSON

Related for 5DE8B3EDE10727E701D4521B68C43392913E7992400F9779163E6AE7193811BC