Vulnerability Name:

CVE-2021-20492 (CCN-197793)

Assigned:2020-12-17
Published:2021-05-25
Updated:2021-06-04
Summary:IBM WebSphere Application Server 8.0, 8.5, 9.0, and Liberty Java Batch is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 197793.
CVSS v3 Severity:8.2 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L)
7.1 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): Low
6.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L)
5.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:6.4 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): Partial
6.1 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-611
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2021-20492

Source: XF
Type: UNKNOWN
ibm-was-cve202120492-xxe(197793)

Source: XF
Type: VDB Entry, Vendor Advisory
ibm-was-cve202120492-xxe (197793)

Source: CCN
Type: IBM Security Bulletin 6456017 (WebSphere Application Server)
WebSphere Application Server Java Batch is vulnerable to an XML External Entity Injection (XXE) vulnerability (CVE-2021-20492)

Source: CONFIRM
Type: Patch, Vendor Advisory
https://www.ibm.com/support/pages/node/6456017

Source: CCN
Type: IBM Security Bulletin 6456319 (FileNet Content Manager)
IBM WebSphere Liberty XML External Entity (XXE) Injection security vulnerability in IBM FileNet Content Manager

Source: CCN
Type: IBM Security Bulletin 6464053 (Liberty for Java)
Liberty for Java for IBM Cloud is vulnerable to an XML External Entity Injection (XXE) attack (CVE-2021-20492)

Source: CCN
Type: IBM Security Bulletin 6464389 (Streams Cloud Private)
Streams service for IBM Cloud Pak for Data might be affected by some underlying WebSphere Liberty vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6465127 (Cloud Pak for Automation)
Multiple vulnerabilities affect IBM Cloud Pak for Automation

Source: CCN
Type: IBM Security Bulletin 6465965 (InfoSphere Master Data Management)
Security vulnerabilities have been identified in IBM WebSphere Application Server used by IBM InfoSphere Master Data Management

Source: CCN
Type: IBM Security Bulletin 6469909 (NovaLink)
Novalink is impacted by XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit affects WebSphere Liberty middle vulnerability in WebSphere Application Server Liberty (CVE-2021-20492)

Source: CCN
Type: IBM Security Bulletin 6476580 (Cloud Application Business Insights)
Vulnerabilities in Java and WLP affects IBM Cloud Application Business Insights

Source: CCN
Type: IBM Security Bulletin 6491911 (Rational Asset Analyzer)
Rational Asset Analyzer is affected by a WebSphere Application Server vulnerability.

Source: CCN
Type: IBM Security Bulletin 6516040 (Security Key Lifecycle Manager)
Using components with known vulnerabilities in IBM Security Guardium Key Lifecycle Manager (CVE-2021-20492)

Source: CCN
Type: IBM Security Bulletin 6549438 (Workload Scheduler)
Vulnerability in Java Batch affects WebSphere Application Server Liberty (CVE-2021-20492)

Source: CCN
Type: IBM Security Bulletin 6574365 (Cloud Private)
Security Vulnerabilities affect IBM Cloud Private - IBM WebSphere Application Server (CVE-2021-20492)

Source: CCN
Type: IBM Security Bulletin 6611955 (Watson Knowledge Catalog InstaScan)
Watson Knowledge Catalog InstaScan is vulnerable to an XML External Entity (XXE) Injection vulnerability due to IBM WebSphere Application Server Liberty ( CVE-2021-20492 )

Vulnerable Configuration:Configuration 1:
  • cpe:/a:ibm:websphere_application_server:*:*:*:*:*:*:*:* (Version >= 8.0.0.0 and <= 8.0.0.15)
  • OR cpe:/a:ibm:websphere_application_server:*:*:*:*:*:*:*:* (Version >= 8.5.0.0 and <= 8.5.5.19)
  • OR cpe:/a:ibm:websphere_application_server:*:*:*:*:*:*:*:* (Version >= 9.0.0.0 and <= 9.0.5.7)
  • OR cpe:/a:ibm:websphere_application_server:*:*:*:*:liberty:*:*:* (Version >= 17.0.0.3 and <= 21.0.0.5)

    • Configuration CCN 1:
  • cpe:/a:ibm:websphere_application_server:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_application_server:8.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_application_server:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_application_server:::~~liberty~~~:*:*:*:*:*
  • AND
  • cpe:/a:ibm:infosphere_master_data_management:11.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_asset_analyzer:6.1.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_key_lifecycle_manager:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_key_lifecycle_manager:3.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_private:3.2.1:cd:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_asset_analyzer:6.1.0.23:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:filenet_content_manager:5.5.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_key_lifecycle_manager:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_private:3.2.2:cd:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_application_business_insights:1.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_application_business_insights:1.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_application_business_insights:1.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_application_server:8.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_pak_for_automation:21.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:filenet_content_manager:5.5.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_key_lifecycle_manager:3.0.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_key_lifecycle_manager:4.1.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_key_lifecycle_manager:4.1.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    ibm websphere application server *
    ibm websphere application server *
    ibm websphere application server *
    ibm websphere application server *
    ibm websphere application server 8.0
    ibm websphere application server 8.5
    ibm websphere application server 9.0
    ibm websphere application server
    ibm infosphere master data management 11.6
    ibm rational asset analyzer 6.1.0.0
    ibm security key lifecycle manager 3.0
    ibm security key lifecycle manager 3.0.1
    ibm cloud private 3.2.1 cd
    ibm rational asset analyzer 6.1.0.23
    ibm filenet content manager 5.5.4
    ibm security key lifecycle manager 4.0
    ibm cloud private 3.2.2 cd
    ibm cloud application business insights 1.1.4
    ibm cloud application business insights 1.1.3
    ibm cloud application business insights 1.1.5
    ibm websphere application server 8.5
    ibm cloud pak for automation 21.0.1
    ibm filenet content manager 5.5.6
    ibm security key lifecycle manager 3.0.1.5
    ibm security key lifecycle manager 4.1.0.1
    ibm security key lifecycle manager 4.1.1