Dec 15, 2018 9:00 am EST
Categorized: Medium Severity
Share this post:
There is a potential cross-site scripting vulnerability with the Installation Verification Tool of IBM WebSphere Application Server which affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center).
CVE(s): CVE-2018-1643
Affected product(s) and affected version(s):
| Affected Product | Affected Versions |
| IBM Tivoli Storage Productivity Center | 5.2.0 – 5.2.7.1 |
| IBM Spectrum Control | 5.2.8 – 5.2.13 |
The versions listed above apply to all licensed offerings of IBM Spectrum Control.
Note that 5.3 versions of IBM Spectrum Control are not affected.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10787515
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/144588
from IBM Product Security Incident Response Team https://ift.tt/2LkVs4C
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.