IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Algo Credit Manager

There are multiple vulnerabilities in IBM® SDK, Java™ Technology Edition, Version 7R1 Service Refresh 4 Fix Pack 15 and earlier releases and IBM SDK, Java Technology Edition, Version 8 Service Refresh 5 Fix Pack 5 and earlier releases used by IBM Algo Credit Manager. These issues were disclosed as part of the IBM Java SDK updates in January 2018.

CVE(s): CVE-2018-2579, CVE-2018-2602, CVE-2018-2599, CVE-2018-2603, CVE-2018-2618, CVE-2018-2637, CVE-2018-2633

Affected product(s) and affected version(s):

IBM Algo Credit Manager 5.2 – 5.4

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg22015591
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137833
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137854
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137851
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137855
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137870
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137889
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137885

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Algo Credit Manager appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2L4ajjx