Lucene search

K
ibmIBMEAAA1FF0E3B9E9518ED528D0D3AB6E603ABD22498FC360654BF5AFF8AB2D068E
HistorySep 23, 2020 - 4:16 a.m.

Security Bulletin: Multiple security vulnerabilities has been identified in IBM WebSphere Application Server shipped with Tivoli Netcool/OMNIbus WebGUI - July 2020 CPU plus deferred CVE-2020-2590 and CVE-2020-2601

2020-09-2304:16:41
www.ibm.com
18
ibm
websphere
application server
tivoli netcool/omnibus
security bulletin
vulnerabilities
july 2020 cpu
cve-2020-2590
cve-2020-2601

EPSS

0.001

Percentile

34.4%

Summary

Websphere Application Server (WAS) is shipped as a component of Tivoli Netcool/OMNIbus WebGUI. Information about security vulnerabilities affecting WAS has been published in a security bulletin.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section

Affected Products and Versions

Principal Product and Version(s) Affected Supporting Product and Version
WebGUI 8.1.0 GA and FP Websphere Application Server 8.5

WebSphere Application Server V7 and V8 are no longer in full support; IBM recommends upgrading to a fixed, supported version/release/platform of the product.

Remediation/Fixes

Please consult the security bulletin Multiple Vulnerabilities in IBM® Java SDK affect WebSphere Application Server July 2020 CPU plus deferred CVE-2020-2590 and CVE-2020-2601 for vulnerability details and information about fixes.

Workarounds and Mitigations

None