WebSphere Application Server is shipped as a component of IBM Security Key Lifecycle Manager (SKLM). Information about multiple security vulnerabilities affecting WebSphere Application Server has been published in a security bulletin.
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Principal Product and Version(s)
| Affected Supporting Product and Version
—|—
IBM Security Key Lifecycle Manager (SKLM) v3.0 | WebSphere Application Server v9.0.0.5
IBM Security Key Lifecycle Manager (SKLM) v3.0.1 | WebSphere Application Server v9.0.0.5
IBM Security Key Lifecycle Manager (SKLM) v4.0 | WebSphere Application Server v9.0.5.0
IBM Security Key Lifecycle Manager (SKLM) v4.1 | WebSphere Application Server v9.0.5.5
IBM Security Key Lifecycle Manager (SKLM) v4.1.1 | WebSphere Application Server Liberty v21.0.0.6
Please consult the Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect IBM WebSphere Application Server and IBM Application Server Liberty due to January 2022 CPU plus deferred CVE-2021-35550 and CVE-2021-35603 for vulnerability details and information about fixes.
None