4 matches found
Security Bulletin: IBM Sterling Connect:Direct Web Services is vulnerable to denial of service due to FasterXML jackson-databind (CVE-2023-35116)
Summary IBM Sterling Connect:Direct Web Services uses FasterXML jackson-databind. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2023-35116 DESCRIPTION: Fasterxml jackson-databind is vulnerable to a denial of service, caused by a...
Security Bulletin: A vulnerability in IBM Java Runtime affects Rational Asset Analyzer
Summary There is a vulnerability in IBM® Runtime Environment Java™ used by Rational Asset analyzer. Rational Asset analyzer has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2019-2949 DESCRIPTION: An unspecified vulnerability in Java SE related to the Kerberos component could all...
Security Bulletin: Rational Asset Analyzer (RAA) is affected by a WebSphere Application Server vulnerability
Summary Rational Asset Analyzer RAA has addressed the following vulnerability. IBM WebSphere Application Server - Liberty is vulnerable to cross-site scripting. Vulnerability Details CVEID: CVE-2019-4663 DESCRIPTION: IBM WebSphere Application Server - Liberty is vulnerable to cross-site scripting...
IBM Websphere Application Server 6.17.0 - Administrative Console Cross-Site Scripting
IBM Websphere Application Server 6.17.0 - Administrative Console Cross-Site Scripting source: https://www.securityfocus.com/bid/34001/info IBM WebSphere Application Server WAS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker m...