Fwd: [CIVN-2020-0271] Information Disclosure Vulnerability in IBM WebSphere Application Server

Severity Rating: MEDIUM

Software Affected

ART/Agent 8.1.5

ART/Agent 8.1.5.1

ART/Agent 8.1.5.2

ART/Agent 8.1.5.3

ART/Agent 8.1.5.4

ART/Agent 8.1.5.5

ART/Agent 8.1.5.6

ART/Agent 8.1.6

ART/Agent 8.1.6.1

ART/Agent 8.1.6.2

ART/Agent 8.1.6.3

ART/Agent 8.1.6.4

Overview

A Vulnerability has been reported in IBM WebSphere Application Server which

could allow an attacker to obtain sensitive information leading to further

attacks.

Description

This vulnerability exists in IBM WebSphere Application Server- Liberty

which is used by IBM License Key Server Administration & Reporting Tool

(ART) and Administration Agent due to an error while checking parameters. A

remote attacker could exploit this vulnerability to obtain sensitive

information.

Successful exploitation of this vulnerability could lead to spoofing

attacks on the targeted system.

Solution

Apply appropriate patches as mentioned in the below link:

https://www.ibm.com/support/pages/node/6202749

Vendor Information

IBM

https://www.ibm.com/support/pages/node/6244170

About Cert Advisory

We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.

Fwd: [CIVN-2020-0271] Information Disclosure Vulnerability in IBM WebSphere Application Server

About Cert Advisory

Related Posts

Popular Posts

Facebook

Blog Archive