IBM5C895C7C57C4AE0DBA34ABD2B89723E13307CF436A786717755036150568D91ASecurity Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Integrated Information Core (CVE-2014-8890)
5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
82.3%
Abstract
IBM WebSphere Application Server v7.0 is shipped as a component of IBM Integrated Information Core. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.
Content
Please consult the security bulletin Security Bulletin: Multiple Security Vulnerabilities fixed in IBM WebSphere Application Server 8.0.0.11 for vulnerability details and information about fixes.
Affected Products and Versions
| Principal Product and Version(s) | Affected Supporting Product and Version |
|---|---|
| IBM Integrated Information Core V1.5 | IBM WebSphere Application Server v7.0 |
Related Information
IBM Secure Engineering Web Portal
IBM Product Security Incident Response Blog
Change History
24 August 2015: Original Version Published
[{“Product”:{“code”:“SS8TBK”,“label”:“IBM Integrated Information Core”},“Business Unit”:{“code”:“BU059”,“label”:“IBM Software w/o TPS”},“Component”:“–”,“Platform”:[{“code”:“PF033”,“label”:“Windows”}],“Version”:“1.5;1.5.0.1”,“Edition”:“”,“Line of Business”:{“code”:“LOB59”,“label”:“Sustainability Software”}}]
Affected configurations
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm integrated information core | eq | 1.5 | |
| ibm integrated information core | eq | 1.5.0.1 |
Related
5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
82.3%