IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume all available memory. IBM Performance Management has addressed the applicable CVE.
Affected product(s) and affected version(s):
Affected Product(s) | Version(s) |
IBM Cloud APM, Base Private | 8.1.4 |
IBM Cloud APM, Advanced Private | 8.1.4 |
IBM Cloud APM | 8.1.4 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6173931
The post Security Bulletin: A vulnerability in IBM Websphere Application Server affects the IBM Performance Management product (CVE-2019-4720) appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2Vt0KAD
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.