Monday, December 18, 2017

IBM Security Bulletin: Security vulnerability in IBM SDK for Node.js might affect IBM Business Process Manager (BPM) Configuration Editor (CVE-2017-14919)

Share this post:

Security vulnerability has been reported for IBM SDK for Node.js. IBM Business Process Manager includes a stand-alone tool for editing configuration properties files that is based on IBM SDK for Node.js.

CVE(s): CVE-2017-14919

Affected product(s) and affected version(s):

– IBM Business Process Manager V8.5.5.0

– IBM Business Process Manager V8.5.6.0 through V8.5.6.0 CF2

– IBM Business Process Manager V8.5.7.0 through V8.5.7.0 Cumulative Fix 2017.06

– IBM Business Process Manager V8.6.0.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2ySgsb7
X-Force Database: http://ift.tt/2hq6hEr



from IBM Product Security Incident Response Team http://ift.tt/2yTpHI2

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.