IBM Security Bulletin: Multiple Security Vulnerabilities in Apache Tomcat affect IBM Rational License Key Server Administration and Reporting Tool

Apache Tomcat is shipped as a component of RLKS Administration and Reporting Tool (RLKS ART) which contains multiple security vulnerabilities that could potentially impact ART.

CVE(s): CVE-2017-5647, CVE-2017-5648, CVE-2017-5651, CVE-2017-12615, CVE-2017-12617

Affected product(s) and affected version(s):

These vulnerabilities affect the following versions of the IBM RLKS Administration and Reporting Tool.

• RLKS Administration and Reporting Tool version 8.1.4
• RLKS Administration and Reporting Tool version 8.1.4.1
• RLKS Administration and Reporting Tool version 8.1.4.2
• RLKS Administration and Reporting Tool version 8.1.4.3
• RLKS Administration and Reporting Tool version 8.1.4.4
• RLKS Administration and Reporting Tool version 8.1.4.5
• RLKS Administration and Reporting Tool version 8.1.4.6
• RLKS Administration and Reporting Tool version 8.1.4.7
• RLKS Administration and Reporting Tool version 8.1.4.8
• RLKS Administration and Reporting Tool version 8.1.4.9

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2xtCT6k
X-Force Database: http://ift.tt/2roExam
X-Force Database: http://ift.tt/2rYhb8o
X-Force Database: http://ift.tt/2zT7qw1
X-Force Database: http://ift.tt/2xssacG
X-Force Database: http://ift.tt/2zUlbKS

The post IBM Security Bulletin: Multiple Security Vulnerabilities in Apache Tomcat affect IBM Rational License Key Server Administration and Reporting Tool appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2xscs0U