Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Tivoli Access Manager for e-business and IBM Security Access Manager for Web 7.0 software (CVE-2016-0306)

Summary

IBM WebSphere Application Server is shipped as a component of IBM Tivoli Access Manager for e-business and IBM Security Access Manager for Web 7.0 software. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.

Vulnerability Details

Please consult the security bulletin “Potential security vulnerability in IBM WebSphere Application Server if FIPS 140-2 is enabled (CVE-2016-0306)” for vulnerability details and information about fixes.

Affected Products and Versions

IBM Tivoli Access Manager for e-business 6.0, 6.1, 6.1.1

IBM Security Access Manager for Web 7.0 (software)

Remediation/Fixes

IBM Tivoli Access Manager for e-business 6.0, 6.1, 6.1.1|
IBM WebSphere Application Server 7.0

IBM Security Access Manager for Web 7.0 (software)| IBM WebSphere Application Server 7.0, 8.0, 8.5

Workarounds and Mitigations

None.