Security Bulletin: Vulnerability in IBM WebSphere Application Server Liberty affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center) CVE-2016-3040

Summary A vulnerability in IBM WebSphere Application Server Liberty affects IBM Spectrum Control and Tivoli Storage Productivity Center. IBM WebSphere Application Server Liberty could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability. An attacker could...

Security Bulletin: Open Redirect vulnerability in WebSphere Application Server Liberty affects multiple IBM Rational products based on IBM Jazz technology (CVE-2016-3040)

Summary Open Redirect vulnerability in WebSphere Application Server Liberty bundled with IBM Jazz Team Server based Applications affects multiple products: Collaborative Lifecycle Management CLM, Rational DOORS Next Generation RDNG, Rational Engineering Lifecycle Manager RELM, Rational Team Conce...

Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server (WAS) Liberty profile shipped with IBM InfoSphere BigInsights (CVE-2016-5986, CVE-2016-3040, CVE-2016-0378)

Summary IBM WebSphere Application Server WAS Liberty profile is shipped as a component of IBM InfoSphere BigInsights Console. Information about a security vulnerabilities affecting WAS Liberty profile has been published in security bulletins. Vulnerability Details Please consult security bulletin...

Security Bulletin: IBM Tivoli Netcool Impact affected by Open Redirect vulnerability in IBM WebSphere Application Server Liberty (CVE-2016-3040)

Summary IBM WebSphere Application Server Liberty is shipped as a component of IBM Tivoli Netcool Impact. There is an Open Redirect Vulnerability in IBM WebSphere Application Server Liberty. Vulnerability Details CVEID: CVE-2016-3040 DESCRIPTION: IBM WebSphere Application Server Liberty could allo...

Security Bulletin: Multiple security vulnerabilities in IBM WebSphere Application Server Liberty affect Tivoli Storage Manager (IBM Spectrum Protect) Operations Center (CVE-2016-0378, CVE-2016-3040, CVE-2016-3042, CVE-2016-5986)

Summary Multiple security vulnerabilities exist in IBM WebSphere Application Server Liberty that affect Tivoli Storage Manager IBM Spectrum Protect Operations Center. Vulnerability Details CVEID: CVE-2016-0378 DESCRIPTION: IBM WebSphere Application Server Liberty could allow a remote attacker to...

Security Bulletin: Open Redirect vulnerability in IBM MessageSight (CVE-2016-3040)

Summary There is a potential for an open redirect vulnerability in WebSphere Application Server Liberty Profile used by IBM MessageSight Vulnerability Details CVEID: CVE-2016-3040 DESCRIPTION: IBM WebSphere Application Server Liberty could allow a remote attacker to conduct phishing attacks, caus...

Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server Liberty shipped with IBM PureApplication System

Summary IBM WebSphere Application Server Liberty is shipped as a component of IBM PureApplication System. Information about security vulnerabilities affecting IBM WebSphere Application Server Liberty have been published in security bulletins CVE-2016-0378, CVE-2016-3040, CVE-2016-3042...

Security Bulletin: Open Redirect vulnerability in WebSphere Application Server Liberty (CVE-2016-3040)

Summary There is a potential for an open redirect vulnerability when using WebSphere Application Server Liberty Profile. Vulnerability Details CVEID: CVE-2016-3040 DESCRIPTION: IBM WebSphere Application Server Liberty could allow a remote attacker to conduct phishing attacks, caused by an open...

CVE-2016-3040

IBM WebSphere Application Server WAS Liberty, as used in IBM Security Privileged Identity Manager ISPIM Virtual Appliance 2.x before 2.0.2 FP8, allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...

CVE-2016-3040

IBM WebSphere Application Server WAS Liberty, as used in IBM Security Privileged Identity Manager ISPIM Virtual Appliance 2.x before 2.0.2 FP8, allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...

CVE-2016-3040

CVE-2016-3040 is an Open Redirect vulnerability in IBM WebSphere Application Server Liberty. IBM bulletins show it can enable phishing by redirecting users to arbitrary sites and note it affects WAS Liberty in various IBM products (e.g., Spectrum Control/Tivoli Storage Productivity Center, Messag...