WHAT HAPPENED

IBM has released security updates to address vulnerabilities in WebSphere Application Server.

Advanced Users: For a complete description of the vulnerabilities and effected systems, visit:

• Security Bulletin: WebSphere Application Server is vulnerable to a remote code execution vulnerability (CVE-2020-4589)

AFFECTED SYSTEMS:

• WebSphere Application Server 7.0, 8.0, 8.5, 9.

WHAT’S THE PROBLEM?

A remote attacker could execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources.

RELATED LINKS

• IT Security
• IBM Secure Engineering Web Portal
• IBM Product Security Incident Response Blog