Lucene search
IBM1A18FFC9E75E6E9B1026E02968D4C5D3D52461FA685AE81CCE5F6714641C891EHistoryApr 28, 2021 - 9:24 p.m.
Security Bulletin: Security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Security Identity Manager
2021-04-2821:24:13
www.ibm.com
11
ibm websphere application server
ibm security identity manager
security bulletin
vulnerability
xxe injection
EPSS
0.003
Percentile
71.8%
Summary
IBM WebSphere Application Server (WAS) is shipped with IBM Security Identity Manager (ISIM). Information about security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.
Vulnerability Details
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| ISIM | 6.0.0 |
| ISIM | 6.0.2 |
Remediation/Fixes
| Principal Product and Version(s) | Affected Supporting Product and Version(s) | Affected Supporting Product Security Bulletin |
|---|---|---|
| ISIM 6.0.0 | WAS 7.0, 8.5 |
Security Bulletin: An XML External Entity (XXE) Injection vulnerability in traditional WebSphere Application Server (CVE-2020-20254)
ISIM 6.0.2| WAS 9
Workarounds and Mitigations
None
Related
nvd
nvd
CVE-2020-20254
2021-05-18 14:15:07
CVE-2020-20250
2021-07-13 12:15:09
nessus
nessus
MikroTik RouterOs Out-of-bounds Write (CVE-2020-20254)
2024-02-27 00:00:00
MikroTik RouterOs NULL Pointer Dereference (CVE-2020-20250)
2024-02-27 00:00:00
cve
cve
CVE-2020-20254
2021-05-18 14:15:07
CVE-2020-20250
2021-07-13 12:15:09
prion
prion
Null pointer dereference
2021-05-18 14:15:00
Null pointer dereference
2021-07-13 12:15:00
cvelist
cvelist
CVE-2020-20254
2021-05-18 13:52:19
CVE-2020-20250
2021-07-13 11:59:52
EPSS
0.003
Percentile
71.8%
Related for 1A18FFC9E75E6E9B1026E02968D4C5D3D52461FA685AE81CCE5F6714641C891E