Friday, July 6, 2018

IBM Security Bulletin: Multiple vulnerabilities affect IBM Tivoli Monitoring embedded WebSphere Application and IHS server

The following security issues have been identified in the WebSphere Application Server and IHS server included as part of IBM Tivoli Monitoring (ITM) portal server.

CVE(s): CVE-2017-1681 , CVE-2017-1731 , CVE-2016-1000031 , CVE-2018-2579 , CVE-2018-2602 , CVE-2018-2603 , CVE-2018-2634 , CVE-2018-2637 , CVE-2018-2633 , CVE-2017-1743 , CVE-2017-12613 , CVE-2018-1301 , CVE-2017-15710 , CVE-2017-15715

Affected product(s) and affected version(s):

IBM Tivoli Monitoring versions 6.3.0 through 6.3.0 FP7 – Tivoli Enterprise Portal Server (TEPS) all CVEs above. 

IBM Tivoli Monitoring versions 6.2.3 through 6.2.3 FP5 – Tivoli Enterprise Portal Server (TEPS) all CVE’s except for CVE-2016-1000031

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/docview.wss?uid=ibm10713469
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134003
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134912
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/117957
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137833
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137854
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137855
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137886
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137889
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137885
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134933
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134049
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140852
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140858
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140857

The post IBM Security Bulletin: Multiple vulnerabilities affect IBM Tivoli Monitoring embedded WebSphere Application and IHS server appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team https://ift.tt/2zhNg2O
Posted by at

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.

Subscribe to: Post Comments (Atom)