SymmetricalDataSecurity: IBM Security Bulletin: Code execution vulnerability with OpenID connect in WebSphere Application Server Liberty (CVE-2018-1851)

Tuesday, October 30, 2018

Oct 30, 2018 9:01 am EDT

Share this post:

There is a potential code execution vulnerability in OpenID connect in WebSphere Application Server Liberty.

CVE(s): CVE-2018-1851

Affected product(s) and affected version(s):

This vulnerability affects the following versions and releases of IBM WebSphere Application Server:

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10735105
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/150999

from IBM Product Security Incident Response Team https://ift.tt/2qiHczz

SymmetricalDataSecurity