Lucene search
IBM92632CCF2E5D968091A91A66449BF402408AACCDD70624AA9ACC2E9C6CAE4822HistoryJun 30, 2020 - 8:09 p.m.
Security Bulletin: Rational Asset Analyzer is affected by a vulnerability in Websphere Application Server.
2020-06-3020:09:05
www.ibm.com
14
EPSS
0.001
Percentile
47.8%
Summary
IBM WebSphere Application Server used by Rational Asset Analyzer is vulnerable to a denial of service, caused by sending a specially-crafted request. .
Vulnerability Details
CVEID:CVE-2019-4720
**DESCRIPTION:**IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume all available memory. IBM X-Force ID: 172125.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/172125 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| Asset Analyzer (RAA) | 6.1.0.0 - 6.1.0.23 |
Remediation/Fixes
| RAA fixpack 23 refresh 1 | Windows |
|---|---|
| RAA fixpack 23 refresh 1 | z/OS |
Workarounds and Mitigations
None
Related
ibm
ibm
Security Bulletin: IBM Cloud Private is vulnerable to an IBM WebSphere Application Server Liberty vulnerability (CVE-2019-4720)
2020-05-10 17:47:50
cve
cve
CVE-2019-4720
2020-01-31 16:15:10
prion
prion
Design/Logic Flaw
2020-01-31 16:15:00
nvd
nvd
CVE-2019-4720
2020-01-31 16:15:10
cvelist
cvelist
CVE-2019-4720
2020-01-31 15:30:17
nessus
nessus
IBM WebSphere Application Server Denial of Service (CVE-2019-4720)
2020-02-07 00:00:00
redhat
redhat
(RHSA-2020:0556) Important: Open Liberty 20.0.0.2 Runtime security update
2020-02-19 20:46:32
EPSS
0.001
Percentile
47.8%
Related for 92632CCF2E5D968091A91A66449BF402408AACCDD70624AA9ACC2E9C6CAE4822