IBM Support

PH07725: Cross-site scripting vulnerability in WebSphere Application Server Admin Console (CVE-2019-4030)

Download


Abstract

Cross-site scripting vulnerability in WebSphere Application Server Admin Console (CVE-2019-4030)

Download Description

PH07725 resolves the following problem:

ERROR DESCRIPTION:
Cross-site scripting vulnerability in WebSphere Application Server Admin Console (CVE-2019-4030)

PROBLEM CONCLUSION:
The fix for this APAR is currently targeted for inclusion in  
fix pack 8.5.5.15 and 9.0.0.11.  Please refer to the          
Recommended Updates page for delivery information:            
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

Prerequisites

None

Installation Instructions

Please review the readme.txt for detailed installation instructions.

URL SIZE(Bytes)
V90 Readme 2241
V85 Readme 2461

Download Package

DOWNLOAD RELEASE DATE SIZE(Bytes)

DOWNLOAD Options

What is Fix Central(FC)?

9.0.0.0-WS-WASND-IFPH07725 03-01-2019 1323271 FC
8.5.5.0-WS-WASND-IFPH07725 03-01-2019 1314647 FC

Problems Solved

PH04119, PH04234, PH07725

Technical Support

Contact IBM Support using SR (http://www.ibm.com/software/support/probsub.html), visit the support web site, or contact 1-800-IBM-SERV (U.S. only).

Problems (APARS) fixed
PH04119, PH04234, PH07725

Document information

More support for: WebSphere Application Server

Component: General

Software version: 8.5.5, 8.5.5.1, 8.5.5.2, 8.5.5.3, 8.5.5.4, 8.5.5.5, 8.5.5.6, 8.5.5.7, 8.5.5.8, 8.5.5.9, 8.5.5.10, 8.5.5.11, 8.5.5.12, 8.5.5.13, 8.5.5.14, 9.0.0.0, 9.0.0.1, 9.0.0.2, 9.0.0.3, 9.0.0.4, 9.0.0.5, 9.0.0.6, 9.0.0.7, 9.0.0.8, 9.0.0.9, 9.0.0.10

Operating system(s): AIX, HP-UX, IBM i, Linux, Solaris, Windows, z/OS

Software edition: Network Deployment

Reference #: 0874612

Modified date: 04 March 2019