Lucene search
IBMB8DAC33D69A4D5B5BD3B7843A77F0114EBE5CE2EA06FAF06667A4FC43658D093HistoryOct 18, 2021 - 6:27 a.m.
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is a required product for IBM Tivoli Netcool Configuration Manager (CVE-2021-40438, CVE-2021-34798)
2021-10-1806:27:04
www.ibm.com
49
Summary
IBM WebSphere Application Server is a required product for IBM Tivoli Netcool Configuration Manager version 6.4.2. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.
Vulnerability Details
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| ITNCM | 6.4.2 |
Remediation/Fixes
| Affected Product(s) | Version(s) | Remediation |
|---|---|---|
| ITNCM | 6.4.2 |
Multiple vulnerabilities in IBM HTTP Server used by WebSphere Application Server
See section: For V9.0.0.0 through 9.0.5.9:
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| tivoli netcool configuration manager | eq | 6.4.2 |
Related
ibm
ibm
nessus
nessus
Photon OS 2.0: Httpd PHSA-2021-2.0-0399
2021-10-08 00:00:00
Debian DLA-2776-1 : apache2 - LTS security update
2021-10-02 00:00:00
Photon OS 1.0: Httpd PHSA-2021-1.0-0437
2021-10-08 00:00:00
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2021-09-27 00:00:00
Apache HTTP Server regression
2021-09-28 00:00:00
Apache HTTP Server regression
2021-09-28 00:00:00
osv
osv
apache2 - security update
2021-10-02 00:00:00
apache2 vulnerabilities
2021-09-27 16:46:11
apache2 - security update
2021-10-08 00:00:00
debian
debian
[SECURITY] [DLA 2776-1] apache2 security update
2021-10-02 16:07:56
[SECURITY] [DSA 4982-1] apache2 security update
2021-10-08 20:56:04
ics
ics
Siemens Apache HTTP Server (Update A)
2022-10-13 12:00:00
photon
photon
suse
suse
Security update for apache2 (important)
2021-11-02 00:00:00
Security update for apache2 (important)
2021-10-26 00:00:00
debiancve
debiancve
freebsd
freebsd
Apache httpd -- multiple vulnerabilities
2021-09-16 00:00:00
mageia
mageia
Updated apache packages fix security vulnerability
2021-09-23 07:49:29
cisco
cisco
prion
prion
Null pointer dereference
2021-09-16 15:15:00
Design/Logic Flaw
2021-09-16 15:15:00
Design/Logic Flaw
2022-02-18 18:15:00
redhatcve
redhatcve
cisa_kev
cisa_kev
Apache HTTP Server-Side Request Forgery (SSRF)
2021-12-01 00:00:00
redhat
redhat
(RHSA-2021:3836) Important: httpd:2.4 security update
2021-10-13 07:08:32
(RHSA-2021:3746) Important: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP9 security update
2021-10-07 13:31:45
(RHSA-2021:3856) Important: httpd security update
2021-10-14 08:00:40
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 1:2.4.49-alt1
2021-10-04 00:00:00
Security fix for the ALT Linux 9 package apache2 version 1:2.4.49-alt1
2021-09-23 00:00:00
f5
f5
K72382141 : Apache HTTPD vulnerability CVE-2021-34798
2021-10-13 00:00:00
K01552024 : Apache vulnerability CVE-2021-40438
2021-10-21 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-09-19 21:02:16
Cross-Site Request Forgery (CSRF)
2021-09-20 12:57:14
cnvd
cnvd
Apache HTTP Server code issue vulnerability
2021-09-22 00:00:00
Apache HTTP Server mod_proxy server-side request forgery vulnerability
2021-09-18 00:00:00
cve
cve
ubuntucve
ubuntucve
alpinelinux
alpinelinux
CVE-2021-34798
2021-09-16 15:15:00
CVE-2021-40438
2021-09-16 15:15:00
httpd
httpd
Apache Httpd < 2.4.49 : NULL pointer dereference in httpd core
2021-09-16 00:00:00
Apache Httpd < 2.4.49 : mod_proxy SSRF
2021-09-16 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-34798 affecting package httpd 2.4.46-6
2021-10-15 04:46:31
CVE-2021-34798 affecting package httpd 2.4.46-10
2022-04-09 06:51:57
CVE-2021-40438 affecting package httpd 2.4.46-6
2021-10-15 04:46:31
slackware
slackware
[slackware-security] httpd
2021-09-17 04:22:20
oraclelinux
oraclelinux
httpd security update
2021-10-14 00:00:00
httpd:2.4 security update
2022-03-16 00:00:00
httpd security update
2021-12-16 00:00:00
centos
centos
httpd, mod_ldap, mod_proxy_html, mod_session, mod_ssl security update
2021-11-17 14:59:00
httpd, mod_ldap, mod_proxy_html, mod_session, mod_ssl security update
2022-01-25 17:31:14
githubexploit
githubexploit
Exploit for Server-Side Request Forgery in Apache Http Server
2022-04-03 15:24:24
Exploit for Server-Side Request Forgery in Apache Http Server
2023-12-12 11:56:23
Exploit for Server-Side Request Forgery in Apache Http Server
2022-06-10 00:46:58
kaspersky
kaspersky
KLA12370 Multiple vulnerabilities in Apache HTTP Server
2021-09-16 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache HTTP Server Server-Side Request Forgery (CVE-2021-40438)
2021-10-18 00:00:00
rocky
rocky
2.4 bug fix update
2021-11-10 09:00:43
httpd:2.4 security update
2022-03-15 09:10:44
httpd:2.4 security update
2021-10-12 15:53:03
hackerone
hackerone
Acronis: CVE-2021-40438 on cp-eu2.acronis.com
2021-10-15 05:46:15
nuclei
nuclei
Apache <= 2.4.48 Mod_Proxy - Server-Side Request Forgery
2021-10-14 19:59:52
almalinux
almalinux
httpd:2.4 bug fix update
2021-11-10 09:00:43
Moderate: httpd:2.4 security update
2022-03-15 09:10:44
Important: httpd:2.4 security update
2021-10-12 15:53:03
rapid7blog
rapid7blog
Active Exploitation of Apache HTTP Server CVE-2021-40438
2021-11-30 17:38:53
rosalinux
rosalinux
Advisory ROSA-SA-2023-2158
2023-04-25 11:30:17
attackerkb
attackerkb
CVE-2021-40438
2021-09-16 00:00:00
amazon
amazon
Important: httpd24
2021-10-15 07:52:00
Important: httpd
2021-10-15 07:57:00
fedora
fedora
[SECURITY] Fedora 35 Update: httpd-2.4.49-1.fc35
2021-09-24 20:56:12
[SECURITY] Fedora 34 Update: httpd-2.4.49-1.fc34
2021-09-20 13:58:04
trellix
trellix
The Bug Report – October Edition
2021-11-02 00:00:00
The Bug Report – October Edition
2021-11-02 00:00:00
cisa
cisa
CISA Adds Five Known Exploited Vulnerabilities to Catalog
2021-12-01 00:00:00
Related for B8DAC33D69A4D5B5BD3B7843A77F0114EBE5CE2EA06FAF06667A4FC43658D093