CVE-2020-4575
published 2020-08-27CVE-2020-4575: IBM WebSphere Application Server ND 8.5 and 9.0, and IBM WebSphere Virtual Enterprise 7.0 and 8.0 are vulnerable to cross-site scripting when High Availability…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
IBM WebSphere Application Server ND 8.5 and 9.0, and IBM WebSphere Virtual Enterprise 7.0 and 8.0 are vulnerable to cross-site scripting when High Availability Deployment Manager is configured.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | websphere_application_server | >= 8.5.0.0 < 8.5.5.18 | 8.5.5.18 |
| ibm | websphere_application_server | >= 9.0.0.0 < 9.0.5.5 | 9.0.5.5 |
| ibm | websphere_application_server_nd | — | — |
| ibm | websphere_application_server_nd | — | — |
| ibm | websphere_virtual_enterprise | — | — |
| ibm | websphere_virtual_enterprise | — | — |