Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Rational Asset Manager (CVE-2014-0114)

2018-06-1704:54:38

www.ibm.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

Summary

IBM WebSphere Application Server is shipped as a component of IBM Rational Asset Manager. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.

Vulnerability Details

| Subscribe to My Notifications to be notified of important product support alerts like this.

Follow this link for more information (requires login with your IBM ID)
—|—

Review Security Bulletin: Classloader Manipulation Vulnerability in IBM WebSphere Application Server CVE-2014-0114 for vulnerability details.

Affected Products and Versions

Version

| Status
—|—
IBM Rational Asset Manager
V7.5.2, V7.5.1, V7.5, V7.2| Affected

Remediation/Fixes

Review the Remediation/Fixes section in Security Bulletin: Classloader Manipulation Vulnerability in IBM WebSphere Application Server CVE-2014-0114 for to locate the proper fix for your version of IBM WebSphere Application Server.

Workarounds and Mitigations

None

CPENameOperatorVersion
rational asset managereq7.5
rational asset managereq7.5.0.1
rational asset managereq7.5.0.2
rational asset managereq7.5.1
rational asset managereq7.5.1.1
rational asset managereq7.5.1.2
rational asset managereq7.5.2
rational asset managereq7.5.2.1

Name	Operator	Version
rational asset manager	eq	7.5
rational asset manager	eq	7.5.0.1
rational asset manager	eq	7.5.0.2
rational asset manager	eq	7.5.1
rational asset manager	eq	7.5.1.1
rational asset manager	eq	7.5.1.2
rational asset manager	eq	7.5.2
rational asset manager	eq	7.5.2.1