Websphere Application Server (WAS) is shipped as a component of IBM Operations Analytics Predictive Insights. Information about WebSphere Application Server vulnerability ( CVE-2020-4629 ) through exploiting access to FFDC logs file on the server has been published in a security bulletin.
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Principal Product and Version(s) | Affected Supporting Product and Version(s) |
---|---|
IBM Operations Analytics Predictive Insights - All | Websphere Application Server 8.5 |
IBM Operations Analytics Predictive Insights - All | Websphere Application Server 9.0 |
For more information and recommended solutions see the full details disclosed in the security bulletin: WebSphere Application Server is vulnerable to an information disclosure vulnerability (CVE-2020-4629)
In summary, details for Predictive Insights WebSphere only:
For WebSphere v9.0.0.0 through 9.0.5.5:
For more information and recommended solutions see the full details disclosed in the security bulletin: WebSphere Application Server is vulnerable to an information disclosure vulnerability (CVE-2020-4629)
For WebSphere v8.5.0.0 through 8.5.5.18:
For more information and recommended solutions see the full details disclosed in the security bulletin: WebSphere Application Server is vulnerable to an information disclosure vulnerability (CVE-2020-4629)
None