Download
Downloadable File
| File link | File size | File description |
|---|---|---|
Abstract
XXE Injection Vulnerability in WebSphere Application Server (CVE-2023-27554 CVSS 6.3)
Download Description
PH53252 resolves the following problem:
ERROR DESCRIPTION:
XXE Injection Vulnerability in WebSphere Application Server (CVE-2023-27554 CVSS 6.3).
PROBLEM SUMMARY:
XXE Injection Vulnerability in WebSphere Application Server (CVE-2023-27554 CVSS 6.3).
PROBLEM CONCLUSION:
Confidential for CVE-2023-27554.
The fix for this APAR is targeted for inclusion in fix packs 8.5.5.24 and 9.0.5.16.
For more information, see Recommended Updates for WebSphere Application Server:
https://www.ibm.com/support/pages/node/715553
ERROR DESCRIPTION:
XXE Injection Vulnerability in WebSphere Application Server (CVE-2023-27554 CVSS 6.3).
PROBLEM SUMMARY:
XXE Injection Vulnerability in WebSphere Application Server (CVE-2023-27554 CVSS 6.3).
PROBLEM CONCLUSION:
Confidential for CVE-2023-27554.
The fix for this APAR is targeted for inclusion in fix packs 8.5.5.24 and
For more information, see Recommended Updates for WebSphere Application Server:
https://www.ibm.com/support/pages/node/715553
Prerequisites
None
Installation Instructions
Review the readme.txt for detailed installation instructions.
| URL | SIZE(Bytes) |
|---|---|
| V85 readme file | 2236 |
| V90 readme file | 2153 |
Download Package
|
IMPORTANT NOTE:
|
WebSphere Application Server and Liberty fix access requires S&S Entitlement beginning in 2021. Use properly registered IDs to download the fixes in this table.
Signature file is provided along with interim fix. See Verifying WebSphere Application Server release packages and Verifying Liberty release packages. |
| DOWNLOAD | RELEASE DATE | SIZE(Bytes) | APPLICABLE FIXPACKS |
URL |
|---|---|---|---|---|
| 8.5.5.20-WS-WASProd-IFPH53252 | 24 May 2023 | 365958 | 8.5.5.20 through 8.5.5.21 | FC |
| 8.5.5.22-WS-WASProd-IFPH53252 | 03 May 2023 | 365940 | 8.5.5.22 through 8.5.5.23 | FC |
| 9.0.5.12-WS-WASProd-IFPH53252 | 24 May 2023 | 365694 | 9.0.5.12 through 9.0.5.13 | FC |
| 9.0.5.14-WS-WASProd-IFPH53252 | 03 May 2023 | 365675 | 9.0.5.14 through 9.0.5.15 | FC |
Note: FC stands for Fix Central. Review the What is Fix Central (FC)? FAQs for more details.
Problems Solved
PH53252
Change History
24 May 2023 : Add new fix files
On
Technical Support
Contact IBM Support at https://www.ibm.com/mysupport/ or 1-800-IBM-SERV (US only).
Document Location
Worldwide
[{"Type":"MASTER","Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"ARM Category":[{"code":"a8m0z0000001j54AAA","label":"WebSphere Application Server traditional-All Platforms-\u003EDownload Documents - L3 Publishing Category"}],"ARM Case Number":"","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"8.5.5;9.0.5"}]
Problems (APARS) fixed
Problems (APARS) fixed
Was this topic helpful?
Document Information
Modified date:
24 May 2023
UID
ibm16989135