| VID |
210239 |
| Severity |
40 |
| Port |
8880, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The IBM WebSphere Application Server installed on the remote host is affected by a remote code execution vulnerability due to the Dojo package,
which is vulnerable to vulnerable to Prototype Pollution via the setObject function.
* References :
https://www.ibm.com/support/pages/node/6558594
* Platforms Affected:
IBM WebSphere Application Server 8.5.x prior to 8.5.5.22
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of IBM WebSphere Application Server 8.5.5.22 or later, available from the IBM Support & downloads Web site at https://www.ibm.com/support/pages/node/6558594 |
| Related URL |
CVE-2021-23450 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
