Authors: Created by IBM

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available.You can track this item individually or track all items by product. Notify me when this APAR changes. Notify me when an APAR for...

Just published by IBM: Read more

Authors: Created by IBM

IBM WebSphere Application Server Liberty is vulnerable to a denial of service with the openidConnectClient-1.0 or socialLogin-1.0 feature enabled....

Just published by IBM: Read more

Authors: Created by IBM

IBM WebSphere Application Server Liberty is vulnerable to a denial of service with the openidConnectClient-1.0 or socialLogin-1.0 feature enabled. CVEID:  CVE-2024-22353^[1]
DESCRIPTION:  IBM WebSphere Application Server Liberty is vulnerable to a denial of service, caused by sending a specially crafted request.A remote attacker could exploit this vulnerability to cause the server to consume memory resources.
CVSS Base score:5.9
CVSS Temporal Score:See:...

Just published by IBM: Read more

Authors: Created by IBM

File link	File size	File description

...

Just published by IBM: Read more

Authors: Created by IBM

IBM WebSphere Application Server Liberty is vulnerable to cross-site scripting with the servlet-6.0 feature enabled.

CVEID:  CVE-2024-27270^[1]
DESCRIPTION:  IBM WebSphere Application Server Liberty is vulnerable to cross-site scripting.This vulnerability allows users to embed arbitrary JavaScript code in a specially crafted URI.
CVSS Base score:4.7
CVSS Temporal Score:See:https://exchange.xforce.ibmcloud.com/vulnerabilities/284576^[2]...

Just published by IBM: Read more