Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBME568EF1AEDF71160C521687EEF39BAD4E7E38A89F906FA2D8B03A2FB9255CCC7
HistoryJun 17, 2018 - 3:24 p.m.

Security Bulletin: IBM Tivoli Monitoring embedded WebSphere Application Server (CVE-2016-3426, CVE-2016-3427, CVE-2016-0306, CVE-2015-0254)

2018-06-1715:24:15
www.ibm.com
1

9 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

Summary

The following security issues have been identified in WebSphere Application Server included as part of IBM Tivoli Monitoring (ITM) portal server.

Vulnerability Details

CVEID: CVE-2016-3427**
DESCRIPTION:** An unspecified vulnerability related to the JMX component has complete confidentiality impact, complete integrity impact, and complete availability impact.
CVSS Base Score: 10
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/112459 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C)
**
CVEID:** CVE-2016-3426**
DESCRIPTION:** An unspecified vulnerability related to the JCE component could allow a remote attacker to obtain sensitive information resulting in a partial confidentiality impact using unknown attack vectors.
CVSS Base Score: 4.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/112457 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:N/A:N)

CVEID: CVE-2016-0306**
DESCRIPTION:** IBM WebSphere Application Server could provide weaker than expected security, caused by the improper TLS configuration. A remote attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques.
CVSS Base Score: 3.7
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/111423 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N)

CVEID: CVE-2015-0254**
DESCRIPTION:** Apache Standard Taglibs could allow a remote attacker to execute arbitrary code on the system, caused by an XML External Entity Injection (XXE) error when processing XML data. By sending specially-crafted XML data, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base Score: 7.5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/101550 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:N/A:N)

Affected Products and Versions

IBM Tivoli Monitoring versions 6.2.3 through 6.3.0 FP6 - Tivoli Enterprise Portal Server (TEPS) all CVEs above.
IBM Tivoli Monitoring versions 6.2.2 - Tivoli Enterprise Portal Server (TEPS) for CVE-2015-0254.

Remediation/Fixes

**

Portal Server-

**embedded WebSphere Application Server

Fix VMRF Remediation/First Fix
6.X.X-TIV-ITM_EWAS_ALL-8.00.11.03 6.3.0.x <http://www.ibm.com/support/docview.wss?uid=swg24042343&gt;
Contains a patch for the embedded WebSphere Application Server (eWAS) 8.0 Fix Pack 11 plus Interim Fix Block 3.
Technote 6.2.3.x __<http://www.ibm.com/support/docview.wss?uid=swg21633720&gt;__
Contains information about installing the embedded WebSphere Application Server (eWAS) patches for IBM Tivoli Monitoring 6.23. The link gives instructions to install** **eWAS 7.0 Fix Pack 39 (7.0.0.39) and Interim Fix block 3 (or later).
Technote 6.2.2.x http://www.ibm.com/support/docview.wss?uid=swg21509259
Contains information about installing the embedded WebSphere Application Server (eWAS) patches for IBM Tivoli Monitoring 6.22. The link gives instructions are to install** **eWAS 6.1 Fix Pack 47 (6.1.0.47) and Interim Fix block 4 (or later)

You should verify applying this fix does not cause any compatibility issues.

Related

ibm 118
nessus 21
cve 4
redhat 6
suse 2
kaspersky 1
openvas 17
mageia 2
oraclelinux 2
prion 4
securityvulns 2
ubuntu 1
tomcat 1
centos 1
amazon 1
github 1
ubuntucve 3
osv 1
veracode 3
kitploit 1
myhack58 1
cisa_kev 1
attackerkb 1
debiancve 2
f5 2
ibm
ibm
Security Bulletin: A security vulnerability has been identified in IBM Cloud Orchestrator and Cloud Orchestrator Enterprise edition (CVE-2015-0254)
2018-06-17 22:33:17
Security Bulletin: Multiple security vulnerabilities have been identified in WebSphere Application Server and bundling products shipped with IBM Cloud Orchestrator (CVE-2016-3426, CVE-2016-3427)
2018-06-17 22:33:08
Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with WebSphere Enterprise Service Bus (CVE-2016-3427, CVE-2016-3426)
2018-06-15 07:05:34
nessus
nessus
IBM WebSphere MQ 7.1 < 7.1.0.8 / 7.5 < 7.5.0.7 / 8.0 < 8.0.0.5 Multiple Vulnerabilities
2016-08-19 00:00:00
IBM WebSphere Application Server 7.0.0.x < 7.0.0.41 / 8.0.0.x < 8.0.0.13 / 8.5.x < 8.5.5.10 MiTM (CVE-2016-0306)
2020-10-30 00:00:00
CentOS 6 / 7 : jakarta-taglibs-standard (CESA-2015:1695)
2015-10-22 00:00:00
cve
cve
CVE-2016-0306
2016-05-17 14:08:00
CVE-2015-0254
2015-03-09 14:59:00
CVE-2016-3427
2016-04-21 11:00:00
redhat
redhat
(RHSA-2015:1695) Important: jakarta-taglibs-standard security update
2015-08-31 00:00:00
(RHSA-2016:0125) Important: Red Hat JBoss Enterprise Application Platform 6.4.6 update
2016-02-04 21:17:19
(RHSA-2016:0122) Important: Red Hat JBoss Enterprise Application Platform 6.4.6 update on RHEL 6
2016-02-04 00:00:00
suse
suse
Security update for jakarta-taglibs-standard (important)
2017-06-27 00:11:17
Security update for jakarta-taglibs-standard (important)
2017-06-15 00:09:02
kaspersky
kaspersky
KLA10483 Code execution vulnerability in Apache Standard Taglib
2015-03-24 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2015-595)
2015-09-25 00:00:00
Mageia: Security Advisory (MGASA-2015-0140)
2022-01-28 00:00:00
CentOS Update for jakarta-taglibs-standard CESA-2015:1695 centos6
2015-09-02 00:00:00
mageia
mageia
Updated jakarta-taglibs-standard packages fix CVE-2015-0254
2015-04-10 01:44:14
Updated java-1.8.0-openjdk packages fix security vulnerabilities
2016-04-25 10:57:21
oraclelinux
oraclelinux
jakarta-taglibs-standard security update
2015-08-31 00:00:00
java-1.8.0-openjdk security update
2016-04-20 00:00:00
prion
prion
Information disclosure
2016-05-17 14:08:00
Xxe
2015-03-09 14:59:00
Buffer overflow
2016-04-21 11:00:00
securityvulns
securityvulns
Apache taglibs security vulnerabilities
2015-03-08 00:00:00
[SECURITY] CVE-2015-0254 XXE and RCE via XSL extension in JSTL XML tags
2015-03-08 00:00:00
ubuntu
ubuntu
Apache Standard Taglibs vulnerability
2015-03-30 00:00:00
tomcat
tomcat
Fixed in Apache Standard Taglib 1.2.3
2015-02-20 00:00:00
centos
centos
jakarta security update
2015-09-01 15:35:28
amazon
amazon
Important: jakarta-taglibs-standard
2015-09-22 10:00:00
github
github
XXE in Apache Standard Taglibs
2020-09-14 18:44:01
ubuntucve
ubuntucve
CVE-2015-0254
2015-03-09 00:00:00
CVE-2016-3427
2016-04-21 00:00:00
CVE-2016-3426
2016-04-21 00:00:00
osv
osv
XXE in Apache Standard Taglibs
2020-09-14 18:44:01
veracode
veracode
XML External Entity (XXE) Through An XSLT Extension
2019-01-15 09:09:55
Arbitrary Code Execution
2019-05-02 05:28:55
Information Disclosure
2019-05-02 05:28:55
kitploit
kitploit
Beanshooter - JMX Enumeration And Attacking Tool
2021-07-22 12:30:00
myhack58
myhack58
Apache Tomcat multiple versions of a remote code execution CVE-2016-8735(POC)-vulnerability warning-the black bar safety net
2016-12-03 00:00:00
cisa_kev
cisa_kev
Oracle Java SE and JRockit Unspecified Vulnerability
2023-05-12 00:00:00
attackerkb
attackerkb
CVE-2016-3427
2016-04-21 00:00:00
debiancve
debiancve
CVE-2016-3427
2016-04-21 11:00:00
CVE-2016-3426
2016-04-21 11:00:00
f5
f5
K73112451 : Oracle Java SE vulnerability CVE-2016-3427
2016-05-28 00:00:00
SOL73112451 - Oracle Java SE vulnerability CVE-2016-3427
2016-05-27 00:00:00

9 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for E568EF1AEDF71160C521687EEF39BAD4E7E38A89F906FA2D8B03A2FB9255CCC7
ibm118nessus21cve4redhat6suse2kaspersky1openvas17mageia2oraclelinux2prion4securityvulns2ubuntu1tomcat1centos1amazon1github1ubuntucve3osv1veracode3kitploit1myhack581cisa_kev1attackerkb1debiancve2f52