IBM WebSphere Application Server, which is included as a component of IBM WebSphere Service Registry and Repository, is vulnerable to the Apache Log4j vulnerabilities. Remediation information about the security vulnerabilities has been published in a security bulletin. The fix addresses the vulnerabilities by removing Apache Log4j.
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Principal Product and Version(s) | Affected Supporting Product and Version(s) |
---|---|
WebSphere Service Registry and Repository V8.5 | WebSphere Application Server V8.5.5 |
WebSphere Service Registry and Repository V8.0 | WebSphere Application Server V8.0 |
IBM strongly recommends addressing the vulnerabilities now.
For WebSphere Service Registry and Repository V8.0, refer to information and steps in:
For WebSphere Service Registry and Repository V8.5, review either the bulletin referenced for V8.0 or:
and take applicable action.
None
CPE | Name | Operator | Version |
---|---|---|---|
websphere service registry and repository | eq | 8.0 | |
websphere service registry and repository | eq | 8.5 |