Korean
<< Back
VID 210239
Severity 40
Port 8880, ...
Protocol TCP
Class WWW
Detailed Description The IBM WebSphere Application Server installed on the remote host is affected by a remote code execution vulnerability due to the Dojo package,

which is vulnerable to vulnerable to Prototype Pollution via the setObject function.

* References :
https://www.ibm.com/support/pages/node/6558594

* Platforms Affected:
IBM WebSphere Application Server 8.5.x prior to 8.5.5.22
Any operating system Any version
Recommendation Upgrade to the latest version of IBM WebSphere Application Server 8.5.5.22 or later, available from the IBM Support & downloads Web site at https://www.ibm.com/support/pages/node/6558594
Related URL CVE-2021-23450 (CVE)
Related URL (SecurityFocus)
Related URL (ISS)