Vulnerabilities in Websphere Liberty server (WLP) affects IBM Cloud Application Business Insights
CVEID:CVE-2020-4590
**DESCRIPTION:**IBM WebSphere Application Server Liberty 17.0.0.3 through 20.0.0.9 running oauth-2.0 or openidConnectServer-1.0 server features is vulnerable to a denial of service attack conducted by an authenticated client. IBM X-Force ID: 184650.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/184650 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H)
Affected Product(s) | Version(s) |
---|---|
IBM Cloud Application Business Insights | 1.1.3 |
IBM Cloud Application Business Insights | 1.1.4 |
IBM Cloud Application Business Insights | 1.1.5 |
The Vulnerabilities can be remediated by applying the ICABI FixPack 1.1.3.2 to all systems where IBM Cloud Application Business Insights version 1.1.3 is installed.
The Vulnerabilities can be remediated by applying the ICABI FixPack 1.1.4.3 to all systems where IBM Cloud Application Business Insights version 1.1.4 is installed.
The Vulnerabilities can be remediated by applying the ICABI FixPack 1.1.5.2 to all systems where IBM Cloud Application Business Insights version 1.1.5 is installed.
The fixes can be found at the following location-
**NOTE:**It is recommended to apply previous ICABI Fixpack(s) first as per the IBM Cloud Application Business Insights version installed.
None