Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMCD6CE1EA5018A8903E7A1DF62D25AAE901D29273E2CBD9DE7FF1CB85C2A7AD36
HistoryJul 21, 2020 - 7:17 p.m.

Security Bulletin: Remote code execution vulnerability in WebSphere Application Server shipped with IBM Cloud Pak for Applications (CVE-2020-4448)

2020-07-2119:17:14
www.ibm.com
13

EPSS

0.036

Percentile

91.7%

JSON

Summary

WebSphere Application Server is shipped as a component of IBM Cloud Pak for Applications. There is a remote code execution vulnerability in WebSphere Application Server. Information about security vulnerabilities affecting WebSphere Application Server have been published in a security bulletin.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section

Affected Products and Versions

Principal Product and Version(s) Affected Supporting Product and Version(s)
IBM Cloud Pak for Applications, all versions

WebSphere Application Server ND and WebSphere Application Server Hypervisor Edition

  • 9
  • 8.5

WebSphere Virtual Enterprise Edition

  • 8
  • 7

Remediation/Fixes

Please consult the following security bulletin for vulnerability details and information about fixes

Workarounds and Mitigations

None

Related

ibm 26
zdi 1
cvelist 1
prion 1
nvd 1
nessus 1
cve 1
ibm
ibm
Security Bulletin: A vulnerability in WebSphere Application Server ND affects IBM Operations Analytics Predictive Insights (CVE-2020-4448)
2020-08-20 18:55:46
Security Bulletin: A Security Vulnerability Has Been Identified In IBM WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On (CVE-2020-4448)
2020-06-29 03:54:29
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM OpenPages with Watson (CVE-2020-4448)
2020-07-21 16:05:06
zdi
zdi
IBM WebSphere UploadFileArgument Directory Traversal Remote Code Execution Vulnerability
2020-06-05 00:00:00
cvelist
cvelist
CVE-2020-4448
2020-06-05 12:55:17
prion
prion
Code injection
2020-06-05 17:15:00
nvd
nvd
CVE-2020-4448
2020-06-05 17:15:11
nessus
nessus
IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.18 / 9.0.x < 9.0.5.4 Remote Code Execution (CVE-2020-4448)
2020-06-12 00:00:00
cve
cve
CVE-2020-4448
2020-06-05 17:15:11

EPSS

0.036

Percentile

91.7%

JSON
Related for CD6CE1EA5018A8903E7A1DF62D25AAE901D29273E2CBD9DE7FF1CB85C2A7AD36
ibm26zdi1cvelist1prion1nvd1nessus1cve1