Security Bulletin: Multiple vulnerabilities in IBM® Java SDK affect WebSphere Service Registry and Repository due to July 2023 CPU

2023-09-0510:58:51

www.ibm.com

ibm

java sdk

websphere service registry and repository

july 2023

cpu

websphere application server

JSON

Summary

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, used by WebSphere Service Registry and Repository. These issues were disclosed as part of the IBM Java SDK updates in July 2023. These issues are addressed by WebSphere Application Server shipped with WebSphere Service Registry and Repository.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section

Affected Products and Versions

Affected Product(s)	Version(s)
WebSphere Service Registry and Repository	8.5.x

Remediation/Fixes

For WebSphere Service Registry and Repository these issues are addressed by WebSphere Application Server.

Refer to the following security bulletin for vulnerability details and information about fixes addressed by WebSphere Application Server shipped with WebSphere Service Registry and Repository:

Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect IBM WebSphere Application Server and IBM WebSphere Application Server Liberty due to July 2023 CPU

Workarounds and Mitigations

None

Affected configurations

Vulners

Node

ibmwebsphere_service_registry_and_repositoryMatch8.0

ibmwebsphere_service_registry_and_repositoryMatch8.5

VendorProductVersionCPE
ibmwebsphere_service_registry_and_repository8.0cpe:2.3:a:ibm:websphere_service_registry_and_repository:8.0:*:*:*:*:*:*:*
ibmwebsphere_service_registry_and_repository8.5cpe:2.3:a:ibm:websphere_service_registry_and_repository:8.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	websphere_service_registry_and_repository	8.0	cpe:2.3:a:ibm:websphere_service_registry_and_repository:8.0:::::::*
ibm	websphere_service_registry_and_repository	8.5	cpe:2.3:a:ibm:websphere_service_registry_and_repository:8.5:::::::*

JSON