Authors: Created by IBM

There are multiple vulnerabilities in the IBM HTTP Server, which is used by IBM WebSphere Application Server, due to the included Apache HTTP Server and Apache Portable Runtime:CVE-2022-28331, CVE-2022-36760, CVE-2022-37436, CVE-2006-20001, and CVE-2022-25147.This has been addressed in the remediation section below. CVEID:  CVE-2022-28331^[1]
DESCRIPTION:  Apache Portable Runtime (APR) could allow a remote attacker to execute arbitrary code on the system, caused by an integer...

Just published by IBM: Read more