Lucene search
IBM8207F1B536D92ECB00DD1E46817C4D316660D0D067C6ECD1069AF1DBAC4989D2HistoryApr 28, 2021 - 8:54 p.m.
Security Bulletin: WebSphere Application Server Traditional, which is bundled with IBM Cloud Pak for Applications, is vulnerable to an XML External Entity (XXE) Injection vulnerability (CVE-2021-20453)
2021-04-2820:54:32
www.ibm.com
7
websphere application server
xml external entity
ibm cloud pak
cve-2021-20453
vulnerability
EPSS
0.002
Percentile
52.4%
Summary
WebSphere Application Server Traditional, which is bundled with IBM Cloud Pak for Applications, is vulnerable to an XML External Entity (XXE) Injection vulnerability (CVE-2021-20453)
Vulnerability Details
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Products and Versions
| Principal Affected Product(s) and Version(s) | Affected Supportive Product(s) and Version(s) |
|---|---|
| IBM Cloud Pak for Applications, all |
WebSphere Application Server
- 9.0
- 8.5
- 8.0
Remediation/Fixes
Workarounds and Mitigations
None
Related
ibm
ibm
Security Bulletin: Security vulnerabilities have been identified in IBM WebSphere Application Server used by IBM InfoSphere Master Data Management
2022-04-27 10:23:01
cvelist
cvelist
CVE-2021-20453
2021-04-20 11:35:14
prion
prion
Xxe
2021-04-20 12:15:00
cve
cve
CVE-2021-20453
2021-04-20 12:15:12
nessus
nessus
nvd
nvd
CVE-2021-20453
2021-04-20 12:15:12
EPSS
0.002
Percentile
52.4%
Related for 8207F1B536D92ECB00DD1E46817C4D316660D0D067C6ECD1069AF1DBAC4989D2