IBM Security Bulletin: Multiple security vulnerabilities affect IBM WebSphere Application Server in IBM Cloud

There is a potential remote code execution vulnerability in WebSphere Application Server. There is a remote code execution vulnerability in the JSF Sun

CVE(s): CVE-2018-1567, Not Applicable, CVE-2018-1695, CVE-2018-1719, CVE-2018-1755, CVE-2018-1683, CVE-2018-1838

Affected product(s) and affected version(s):

This vulnerability affects the following versions and releases of IBM WebSphere Application Server:

• Liberty
• Version 9.0
• Version 8.5

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10734167
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/143024
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/145172
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/145769
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/147292
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148597
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/145455
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/150811

The post IBM Security Bulletin: Multiple security vulnerabilities affect IBM WebSphere Application Server in IBM Cloud appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2CA98Hf