Lucene search
IBME4898C0899FF72013374ABE04BC187D69E292DAB6396B793C9BBD8F061B93055HistoryMar 23, 2021 - 10:17 p.m.
Security Bulletin: Rational Asset Analyzer is affected by a vulnerability in WebSphere Application Server Liberty (CVE-2020-4590)
2021-03-2322:17:07
www.ibm.com
9
rational asset analyzer
websphere application server liberty
cve-2020-4590
denial of service
ibm x-force id
EPSS
0.001
Percentile
32.8%
Summary
Rational Asset Analyzer team has addressed the following vulnerability: CVE-2020-4590.
Vulnerability Details
CVEID:CVE-2020-4590
**DESCRIPTION:**IBM WebSphere Application Server Liberty 17.0.0.3 through 20.0.0.9 running oauth-2.0 or openidConnectServer-1.0 server features is vulnerable to a denial of service attack conducted by an authenticated client. IBM X-Force ID: 184650.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/184650 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| Rational Asset Analyzer (RAA) | 6.1.0.0 - 6.1.0.23 |
Remediation/Fixes
Apply the corresponding fix from FIX Central. Note the release date of 2021/03/22
Windows Version
| Fix Central
—|—
z/OS Version
| Fix Central
Workarounds and Mitigations
None
Related
nvd
nvd
CVE-2020-4590
2020-09-21 15:15:13
ibm
ibm
cve
cve
CVE-2020-4590
2020-09-21 15:15:13
cvelist
cvelist
CVE-2020-4590
2020-09-21 14:55:25
prion
prion
Design/Logic Flaw
2020-09-21 15:15:00
EPSS
0.001
Percentile
32.8%
Related for E4898C0899FF72013374ABE04BC187D69E292DAB6396B793C9BBD8F061B93055