Download
Downloadable File
| File link | File size | File description |
|---|---|---|
Abstract
WebSphere Application Server XXE Injection Vulnerability (CVE-2020-4643 CVSS score 7.5)
Download Description
PH27509 resolves the following problem:
ERROR DESCRIPTION:
WebSphere Application Server XML External Entity (XXE) Injection Vulnerability (CVE-2020-4643 CVSS score 7.5).
PROBLEM SUMMARY:
WebSphere Application Server XML External Entity (XXE) Injection Vulnerability (CVE-2020-4643 CVSS score 7.5).
PROBLEM CONCLUSION:
Confidential for CVE-2020-4643.
ERROR DESCRIPTION:
WebSphere Application Server XML External Entity (XXE) Injection Vulnerability (CVE-2020-4643 CVSS score 7.5).
PROBLEM SUMMARY:
WebSphere Application Server XML External Entity (XXE) Injection Vulnerability (CVE-2020-4643 CVSS score 7.5).
PROBLEM CONCLUSION:
Confidential for CVE-2020-4643.
The fix for this APAR is targeted for inclusion in fix packs 8.5.5.19 and 9.0.5.6. For more information, see 'Recommended Updates for WebSphere Application Server': http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980
Prerequisites
None
Installation Instructions
Review the readme.txt for detailed installation instructions.
| URL | SIZE(Bytes) |
|---|---|
| V90 Readme | 2414 |
| V85 Readme | 2494 |
| V80 Readme | 2192 |
| V70 Readme | 4881 |
Download Package
| DOWNLOAD | RELEASE DATE |
SIZE
(Bytes)
|
APPLICABLE
(Fixpacks)
|
DOWNLOAD Options |
|---|---|---|---|---|
| 9.0.5.2-WS-WASProd-IFPH27509 | 16 September 2020 | 326226 | 9.0.5.2 through 9.0.5.5 | FC |
| 9.0.0.11-WS-WASProd-IFPH27509 | 12 July 2021 | 314628 | 9.0.0.11 | FC |
| 8.5.5.18-WS-WASProd-IFPH27509 | 29 September 2020 | 314423 | 8.5.5.18 | FC |
| 8.5.5.15-WS-WASProd-IFPH27509 | 16 September 2020 | 322589 | 8.5.5.15 through 8.5.5.17 | FC |
| 8.0.0.15-WS-WASProd-IFPH27509 | 16 September 2020 | 313265 | 8.0.0.15 | FC |
| 8.0.0.15-WS-WASEmbeded-IFPH27509 | 18 September 2020 | 273834 | 8.0.0.15 | FC |
| 7.0.0.45-WS-WAS-IFPH27509 | 16 September 2020 | 91743 | 7.0.0.45 | FC |
Problems Solved
PH27509
On
Technical Support
Contact IBM Support at https://www.ibm.com/software/mysupport/s/ or 1-800-IBM-SERV (US only).
Document Location
Worldwide
[{"Type":"MASTER","Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"ARM Category":[{"code":"a8m0z0000001j54AAA","label":"Download Documents - L3 Publishing Category"}],"ARM Case Number":"","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"7.0.0;8.0.0;8.5.5;9.0.0"}]
Problems (APARS) fixed
Problems (APARS) fixed
Was this topic helpful?
Document Information
Modified date:
04 August 2021
UID
ibm16333617