IBM WebSphere Application Server Interim Security Update
IBM has issued an interim security update to address a vulnerability in the IBM WebSphere Application Server using malformed SAML responses from the SAML identity provider which could allow a remote attacker to obtain sensitive information.
This content has been archived
This article no longer conforms to NHS Digital's standards for cyber alerts, and may contain outdated or inaccurate information. Use of this information contained in this page is at your own risk
Summary
IBM has issued an interim security update to address a vulnerability in the IBM WebSphere Application Server using malformed SAML responses from the SAML identity provider which could allow a remote attacker to obtain sensitive information.
Affected platforms
The following platforms are known to be affected:
Threat details
For further information
Remediation steps
| Type | Step |
|---|---|
|
Users and administrators are encouraged to review the IBM PI78804 information disclosure and apply the necessary updates and workarounds. |
CVE Vulnerabilities
Last edited: 17 February 2020 12:45 pm