There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 SR10-FP25 and Version 8 SR5-FP15 used by IBM Tivoli Application Dependency Discovery Manager (TADDM). These issues were disclosed as part of the IBM Java SDK updates in July 2018.
CVE(s): CVE-2018-2964, CVE-2018-2973, CVE-2018-2940, CVE-2018-2952, CVE-2018-1656, CVE-2018-12539, CVE-2018-1517, CVE-2016-0705, CVE-2017-3732, CVE-2017-3736
Affected product(s) and affected version(s):
TADDM 7.2.2.5
TADDM 7.3 (7.3.0.0 – 7.3.0.5)
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10732723
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146827
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146835
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146803
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146815
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/144882
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148389
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141681
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/111140
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/121313
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134397
The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Application Dependency Discovery Manager (TADDM) appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2xG3QpH
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.