Lucene search
IBMC67D3E47A0F4652C4ED28F389C1AAE83541CC9BA1CBDE7B6ED32D14374D1A3FCHistoryJul 19, 2021 - 8:38 p.m.
Security Bulletin: Security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Security Directory Server (CVE-2021-20454)
2021-07-1920:38:30
www.ibm.com
11
ibm
websphere application server
security directory server
vulnerability
cve-2021-20454
EPSS
0.002
Percentile
59.9%
Summary
IBM WebSphere Application Server (WAS) is shipped with IBM Security Directory Server (ISDS). Information about security vulnerability affecting IBM WebSphere Application Server has been published in security bulletin.
Vulnerability Details
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| SDS | 6.4.0 |
Remediation/Fixes
| Principal Product and Version(s) | Affected Supporting Product and Version(s) | Affected Supporting Product Security Bulletin |
|---|---|---|
| IBM Security Directory Server 6.4.0 | WAS 9.0, 8.0. 8.5 | |
| Security Bulletin: WebSphere Application Server traditional is vulnerable to an XML External Entity (XXE) Injection vulnerability (CVE-2021-20454) |
Workarounds and Mitigations
None
Related
ibm
ibm
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server used by IBM Rational ClearQuest (CVE-2021-20454)
2021-09-29 12:26:12
cvelist
cvelist
CVE-2021-20454
2021-04-21 12:05:20
cve
cve
CVE-2021-20454
2021-04-21 12:15:08
prion
prion
Xxe
2021-04-21 12:15:00
nvd
nvd
CVE-2021-20454
2021-04-21 12:15:08
d0znpp
d0znpp
A4: XML External Entities (XXE) βοΈβββTop 10 OWASP 2017
2021-09-14 13:09:18
EPSS
0.002
Percentile
59.9%
Related for C67D3E47A0F4652C4ED28F389C1AAE83541CC9BA1CBDE7B6ED32D14374D1A3FC