IBM WebSphere Application Server is a required product for IBM Tivoli Netcool Configuration Manager version 6.4.2. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section

Affected Products and Versions

Affected Product(s)	Version(s)
ITNCM	6.4.2

Remediation/Fixes

Affected Product(s)	Version(s)	Remediation
ITNCM	6.4.2

Multiple Vulnerabilities in Apache HttpComponents and HttpCommons affect WebSphere Application Server

See section: For V8.5.0.0 through 8.5.5.19:

Workarounds and Mitigations

None

CPENameOperatorVersion
tivoli netcool configuration managereq6.4.2

CPE	Name	Operator	Version
	tivoli netcool configuration manager	eq	6.4.2

ibm 48

nessus 37

securityvulns 6

ubuntu 1

openvas 33

suse 2

redhat 15

mageia 3

fedora 8

freebsd 2

osv 5

ubuntucve 5

f5 3

debian 2

amazon 1

photon 2

debiancve 4

prion 5

cve 4

github 6

centos 2

oraclelinux 2

veracode 1

redhatcve 2

ibm

Security Bulletin: Multiple Vulnerabilities in Apache HttpComponents and HttpCommons affect WebSphere Application Server

2021-05-13 20:09:44

Security Bulletin: Multiple security vulnerabilities has been identified in IBM WebSphere Application Server shipped with Tivoli Netcool/OMNIbus WebGUI (CVE-2015-5262, CVE-2014-3577, CVE-2012-6153, CVE-2011-1498)

2021-05-21 04:58:23

Security Bulletin: Security vulnerabilities have been fixed in IBM Security Identity Manager Virtual Appliance

2021-09-01 17:30:36

nessus

IBM WebSphere Application Server 8.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.20 / 9.0.x < 9.0.5.8 Multiple Vulnerabilities

2021-05-20 00:00:00

Ubuntu 14.04 LTS : Apache Commons HttpClient vulnerabilities (USN-2769-1)

2015-10-15 00:00:00

openSUSE Security Update : apache-commons-httpclient (openSUSE-2020-1875)

2020-11-09 00:00:00

securityvulns

[USN-2769-1] Apache Commons HttpClient

2015-10-25 00:00:00

CVE-2014-3577: Apache HttpComponents client: Hostname verification susceptible to MITM attack

2014-08-18 00:00:00

[ MDVSA-2014:170 ] jakarta-commons-httpclient

2014-10-15 00:00:00

ubuntu

Apache Commons HttpClient vulnerabilities

2015-10-14 00:00:00

openvas

Ubuntu: Security Advisory (USN-2769-1)

2015-10-15 00:00:00

openSUSE: Security Advisory for apache-commons-httpclient (openSUSE-SU-2020:1873-1)

2020-11-08 00:00:00

CentOS Update for jakarta-commons-httpclient CESA-2014:1166 centos7

2014-09-10 00:00:00

suse

Security update for apache-commons-httpclient (important)

2020-11-07 00:00:00

Security update for apache-commons-httpclient (important)

2020-11-08 00:00:00

redhat

(RHSA-2014:1891) Important: Red Hat JBoss BRMS 6.0.3 security update

2014-11-24 20:43:48

(RHSA-2014:1833) Important: Red Hat JBoss Enterprise Web Platform 5.2.0 security update

2014-11-10 00:00:00

(RHSA-2014:1892) Important: Red Hat JBoss BPM Suite 6.0.3 update

2014-11-24 20:44:18

mageia

Updated Updated jakarta-commons-httpclient and httpcomponents-client packages fix security vulnerabilities

2014-08-25 12:44:11

Updated jakarta-commons-httpclient and httpcomponents-client packages fix security vulnerability

2014-08-25 12:44:11

Updated jakarta-commons-httpclient and httpcomponents-client packages fixes security vulnerability

2015-10-09 21:47:39

fedora

[SECURITY] Fedora 20 Update: httpcomponents-client-4.2.5-4.fc20

2014-08-30 03:58:27

[SECURITY] Fedora 19 Update: httpcomponents-client-4.2.5-4.fc19

2014-08-30 03:57:30

[SECURITY] Fedora 20 Update: jakarta-commons-httpclient-3.1-15.fc20

2014-08-27 01:31:46

freebsd

Axis2 -- Security vulnerabilities on dependency Apache HttpClient

2012-12-06 00:00:00

jenkins -- Jenkins core bundles vulnerable version of the commons-httpclient library

2021-10-06 00:00:00

osv

commons-httpclient - security update

2015-05-19 00:00:00

Exposure of Sensitive Information to an Unauthorized Actor in Apache HttpClient

2022-05-17 05:39:03

Denial of service vulnerability in org.apache.httpcomponents:httpclient

2018-10-17 00:05:29

ubuntucve

CVE-2012-5783

2012-11-04 00:00:00

CVE-2011-1498

2011-07-07 00:00:00

CVE-2015-5262

2015-09-30 00:00:00

SOL15364328 - Apache vulnerabilities CVE-2012-5783, CVE-2012-6153, and CVE-2014-3577

2016-02-02 00:00:00

SOL15737 - Apache vulnerability CVE-2014-3577

2014-10-23 00:00:00

K15737 : Apache vulnerability CVE-2014-3577

2014-10-23 00:00:00

debian

[SECURITY] [DLA 222-1] commons-httpclient security update

2015-05-19 15:18:39

[SECURITY] [DLA 322-1] commons-httpclient security update

2015-10-01 08:24:15

amazon

Important: jakarta-commons-httpclient

2014-09-17 21:47:00

photon

Moderate Photon OS Security Update - PHSA-2020-0141

2020-09-17 00:00:00

Moderate Photon OS Security Update - PHSA-2020-3.0-0141

2020-09-17 00:00:00

debiancve

CVE-2011-1498

2011-07-07 21:55:00

CVE-2015-5262

2015-10-27 16:59:00

CVE-2014-3577

2014-08-21 14:55:00

prion

Authorization

2011-07-07 21:55:00

Design/Logic Flaw

2015-10-27 16:59:00

Design/Logic Flaw

2014-08-21 14:55:00

cve

CVE-2011-1498

2011-07-07 21:55:00

CVE-2015-5262

2015-10-27 16:59:00

CVE-2014-3577

2014-08-21 14:55:00

github

Exposure of Sensitive Information to an Unauthorized Actor in Apache HttpClient

2022-05-17 05:39:03

Denial of service vulnerability in org.apache.httpcomponents:httpclient

2018-10-17 00:05:29

Improper Verification of Cryptographic Signature in org.apache.httpcomponents:httpclient

2018-10-17 00:05:06

centos

jakarta security update

2014-09-08 16:54:16

httpcomponents security update

2014-09-03 23:09:02

oraclelinux

jakarta-commons-httpclient security update

2014-09-08 00:00:00

httpcomponents-client security update

2014-09-03 00:00:00

veracode

Improper Certificate Common Name Verification Allows Spoofing SSL Servers

2019-01-15 09:00:42

redhatcve

CVE-2018-1000872

2019-01-11 21:19:42

CVE-2017-1000402

2017-11-21 11:23:42

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

JSON

Related for F740A49083E598F5C61454D5FE2852EC2DAF253C768CB7F35E6A3DC564290AB7