VID |
210239 |
Severity |
40 |
Port |
8880, ... |
Protocol |
TCP |
Class |
WWW |
Detailed Description |
The IBM WebSphere Application Server installed on the remote host is affected by a remote code execution vulnerability due to the Dojo package,
which is vulnerable to vulnerable to Prototype Pollution via the setObject function.
* References : https://www.ibm.com/support/pages/node/6558594
* Platforms Affected: IBM WebSphere Application Server 8.5.x prior to 8.5.5.22 Any operating system Any version |
Recommendation |
Upgrade to the latest version of IBM WebSphere Application Server 8.5.5.22 or later, available from the IBM Support & downloads Web site at https://www.ibm.com/support/pages/node/6558594 |
Related URL |
CVE-2021-23450 (CVE) |
Related URL |
(SecurityFocus) |
Related URL |
(ISS) |
|