There are two potential infomation disclosure vulnerabilities that affects the Java Server Faces (JSF) component used by WebSphere Application Server.
CVE(s): CVE-2017-1583, CVE-2011-4343
Affected product(s) and affected version(s):
These vulnerabilities affects the following versions and releases of IBM WebSphere Application Server:
- Liberty jsf-2.0 feature
- Version 8.5
- Version 8.0
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2z5qsSI
X-Force Database: http://ift.tt/2gVtBtY
X-Force Database: http://ift.tt/2ioSn9c
The post IBM Security Bulletin: Multiple vulnerabilities affect Java Server Faces (JSF) used by WebSphere Application Server (CVE-2017-1583, CVE-2011-4343) appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2iuhIP9
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.