Dec 20, 2018 9:00 am EST
Categorized: High Severity
Share this post:
There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7.0.10.30 used by IBM MQ Internet Pass Thru. These issues were disclosed as part of the IBM Java SDK updates in July 2018.
CVE(s): CVE-2018-1656, CVE-2018-12539
Affected product(s) and affected version(s):
IBM SDK, Java Technology Edition, Version 7 Service Refresh 10 Fix Pack 30 (or later) and earlier releases provided by WebSphere MQIPT 2.1 on all platforms.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10738985
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/144882
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148389
from IBM Product Security Incident Response Team https://ift.tt/2QJVpoY
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.