IBM Security Bulletin: Vulnerabilities in Apache Struts affects IBM WebSphere Application Server (CVE-2016-1181 and CVE-2016-1182)

Apache Struts vulnerabilities affect WebSphere Application Server and WebSphere Application Server Hypervisor Edition Administration Console.

CVE(s): CVE-2016-1181, CVE-2016-1182

Affected product(s) and affected version(s):

The following Versions of WebSphere Application Server and IBM WebSphere Application Server Hypervisor Edition may be affected:

  • Version 9.0
  • Version 8.5 and 8.5.5 Full Profile
  • Version 8.0
  • Version 7.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/29tkAmX
X-Force Database: http://ift.tt/2974C3a
X-Force Database: http://ift.tt/29tkNpV



from IBM Product Security Incident Response Team http://ift.tt/2974Irq