Authors: Created by IBM

IBM WebSphere Application Server is vulnerable to HTTP header injection when processing web requests.This has been addressed. CVEID:  CVE-2022-34165^[1]
DESCRIPTION:  IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to HTTP header injection, caused by improper validation.This could allow an attacker to conduct various attacks against the vulnerable system, including cache poisoning and cross-site scripting.
CVSS Base score:5.4
...

Just published by IBM: Read more

Authors: Created by IBM

File link	File size	File description

...

Just published by IBM: Read more

Authors: Created by IBM

...

Just published by IBM: Read more

Authors: Created by IBM

There are multiple vulnerabilities in the IBM® SDK, Java™ Technology Edition that is shipped with IBM WebSphere Application Server and IBM WebSphere Application Server Liberty.The CVE(s) listed in this document might affect some configurations of IBM WebSphere Application Server traditional and IBM WebSphere Application Server Liberty.These products have addressed the applicable CVE(s).If you run your own Java code using the IBM Java Runtime delivered with this product, you should evaluate your code to determine whether the complete list of vulnerabilities...

Just published by IBM: Read more

Authors: Created by IBM

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available.You can track this item individually or track all items by product. Notify me when this APAR changes. Notify me when an APAR for...

Just published by IBM: Read more