Rewterz Threat Alert – Trickbot IOCs
August 13, 2020Rewterz Threat Advisory – CVE-2020-4662 – IBM Event Streams privilege escalation
August 17, 2020Rewterz Threat Alert – Trickbot IOCs
August 13, 2020Rewterz Threat Advisory – CVE-2020-4662 – IBM Event Streams privilege escalation
August 17, 2020Severity
High
Analysis Summary
IBM WebSphere Application Server could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources. The vulnerability only occurs if an undocumented customization has been applied by an administrator.
Impact
Arbitrary code execution
Affected Vendors
IBM
Affected Products
- IBM WebSphere Application Server 7.0
- IBM WebSphere Application Server 8.0
- IBM WebSphere Application Server 8.5
- IBM WebSphere Application Server 9.0
Remediation
Refer to IBM Security Bulletin 6258333 for patch, upgrade or suggested workaround information.