Lucene search
IBMB3C3467DAD2410E5D82EC987AD0113868CB3B6C59EE183BE3FD66CA8F42EB326HistoryMay 26, 2021 - 9:58 a.m.
Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with IBM Intelligent Operations Center (CVE-2021-20492)
2021-05-2609:58:10
www.ibm.com
12
ibm
websphere application server
intelligent operations center
security vulnerability
cve-2021-20492
xml external entity injection
EPSS
0.002
Percentile
52.4%
Summary
IBM WebSphere® Application Server is shipped with IBM® Intelligent Operations Center. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.
Vulnerability Details
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| Intelligent Operations Center (IOC) | All |
| IBM® Intelligent Operations Center for Emergency Management | All |
Remediation/Fixes
Download the correct version of the fix from the following link: Security Bulletin: WebSphere Application Server Java Batch is vulnerable to an XML External Entity Injection (XXE) vulnerability (CVE-2021-20492). Installation instructions for the fix are included in the readme document that is in the fix package.
Workarounds and Mitigations
None
Related
ibm
ibm
prion
prion
Xxe
2021-05-26 17:15:00
nvd
nvd
CVE-2021-20492
2021-05-26 17:15:14
cve
cve
CVE-2021-20492
2021-05-26 17:15:14
cvelist
cvelist
CVE-2021-20492
2021-05-26 16:20:18
EPSS
0.002
Percentile
52.4%
Related for B3C3467DAD2410E5D82EC987AD0113868CB3B6C59EE183BE3FD66CA8F42EB326