Lucene search

K
ibmIBM8649193431A71228BC32B0BD78D31629CEE17377E0FEA3B72BFEBEC9E8B5F648
HistoryOct 24, 2018 - 3:30 p.m.

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Security Identity Manager (CVE-2014-7810)

2018-10-2415:30:01
www.ibm.com
18

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

Summary

IBM WebSphere Application Server (WAS) is shipped as a component of IBM Security Identity Manager (ISIM). Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin.

Vulnerability Details

Please consult the security bulletin Security Bulletin: Potential bypass security vulnerability in Expression Language library used by WebSphere Application Server (CVE-2014-7810) for vulnerability details and information about fixes.

Affected Products and Versions

Product Version WebSphere version
ISIM 6.0 WAS v 7.0, v8.0, v8.5

CPENameOperatorVersion
ibm security identity managereq6.0

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

Related for 8649193431A71228BC32B0BD78D31629CEE17377E0FEA3B72BFEBEC9E8B5F648