11 matches found
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Asset and Service Management (CVE-2015-4938)
Summary IBM WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Energy Optimization, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life...
Security Bulletin: Vulnerabilities in Websphere Liberty Profile (WLP) affect Power Management Console (CVE-2015-2017, CVE-2015-1927, CVE-2015-4938)
Summary Websphere liberty Profile is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2015-4938 DESCRIPTION: IBM WebSphere Application Server could allow a remote attacker to spoof a servlet. An attacker could exploit this...
Security Bulletin: A security vulnerability has been identified in IBM Business Process Manager and IBM HTTP Server shipped with IBM Cloud Orchestrator (CVE-2015-1932, CVE-2015-4938)
Summary A security vulnerability has been identified in IBM Business Process Manager and IBM HTTP Server shipped with IBM Cloud Orchestrator CVE-2015-1932, CVE-2015-4938. Vulnerability Details IBM Business Process Manager and IBM HTTP Server are shipped with IBM Cloud Orchestrator. CVEID:...
Security Bulletin: A security vulnerability has been identified in IBM Business Process Manager, IBM HTTP Server, IBM SmartCloud Cost Management and IBM Tivoli Monitoring shipped IBM Cloud Orchestrator Enterprise (CVE-2015-1932, CVE-2015-4938)
Summary A security vulnerability has been identified in IBM Business Process Manager, IBM HTTP Server, IBM SmartCloud Cost Management and IBM Tivoli Monitoring shipped IBM Cloud Orchestrator Enterprise Edition CVE-2015-1932, CVE-2015-4938. Vulnerability Details IBM Business Process Manager, IBM...
Security Bulletin: Multiple vulnerabilities in IBM Cloud Orchestrator, IBM Cloud Orchestrator Enterprise, and products shipped with IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise
Summary Multiple vulnerabilities have been identified in IBM Cloud Orchestrator, IBM Cloud Orchestrator Enterprise, and in supporting products shipped with IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise. Vulnerability Details This security bulletin covers multiple vulnerabilities in...
Security Bulletin:A security vulnerability has been identified in WebSphere Application Server shipped with Tivoli Usage and Accounting Manager/SmartCloud Cost Management. (CVE-2015-4938)
Summary WebSphere Application Server is shipped as a component of Tivoli Usage and Accounting Manager / SmartCloud Cost Management. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin. CVE-2015-4938 Vulnerability Details Plea...
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Workload Deployer (CVE-2015-4938)
Summary IBM WebSphere Application Server is shipped as a component of IBM Workload Deployer. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Consult the security bulletin Multiple Security...
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM PureApplication System (CVE-2015-4938)
Summary IBM WebSphere Application Server is shipped as a component of IBM PureApplication System. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Consult the security bulletin Multiple Security...
Security Bulletin: IBM MQ Appliance potentially vulnerable to remote servlet spoof attack (CVE-2015-4938)
Summary A potential remote servlet spoof attack vulnerability was addressed by IBM MQ Appliance. Vulnerability Details CVEID: CVE-2015-4938 DESCRIPTION: IBM WebSphere Application Server could allow a remote attacker to spoof a servlet. An attacker could exploit this vulnerability to persuade the...
IBM WebSphere Application Server 7.0 < 7.0.0.39 Multiple Vulnerabilities (FREAK)
Binary data 9700.prm...
CVE-2015-4938
CVE-2015-4938 in IBM WebSphere Application Server could allow a remote attacker to spoof a servlet and persuade a user to enter sensitive information. Affected products/versions include WebSphere Application Server 7.0, 8.0, and 8.5.x (across Full/Li berty profiles and related bundles). The root ...