Lucene search

K
ibmIBM781FF913946834B24E9A339648FC3C0A6ECBC1CFFB7FD556917120A6373D7BF1
HistoryJun 17, 2018 - 10:28 p.m.

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Integrated Information Core (CVE-2016-0385)

2018-06-1722:28:34
www.ibm.com
5

0.001 Low

EPSS

Percentile

46.4%

Summary

IBM WebSphere Application Server is shipped as a component of IBM Integrated Information Core. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.

Vulnerability Details

CVEID: CVE-2016-0385**
DESCRIPTION:** IBM WebSphere Application Server could allow a remote attacker to bypass security restrictions caused by a buffer overflow. This could allow the attacker to view unauthorized data.
CVSS Base Score: 3.1
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/112359 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N)

Affected Products and Versions

Principal Product and Version(s)

| Affected Supporting Product
β€”|β€”
IBM Integrated Information Core V1.5, V1.5.0.1 and V1.5.0.2| IBM WebSphere Application Server

Remediation/Fixes

Consult the security bulletin: Bypass security restrictions in WebSphere Application Server (CVE-2016-0385) for vulnerability details and information about fixes.

0.001 Low

EPSS

Percentile

46.4%

Related for 781FF913946834B24E9A339648FC3C0A6ECBC1CFFB7FD556917120A6373D7BF1