IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Security Privileged Identity Manager

There are multiple vulnerabilities in IBM® SDK Java Technology Edition used by IBM Security Privileged Identity Manager (ISPIM). These issues were disclosed as part of the IBM Java SDK updates in July 2018, April 2018, January 2018, October 2017.

CVE(s): CVE-2016-0705, CVE-2018-1656, CVE-2018-2973, CVE-2017-3732, CVE-2018-1517, CVE-2018-2964, CVE-2018-12539, CVE-2018-2783, CVE-2018-2677, CVE-2018-2641, CVE-2017-10388

Affected product(s) and affected version(s):

IBM Security Privileged Identity Manager (ISPIM) 2.1.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10871356
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/111140
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/144882
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146835
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/121313
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141681
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146827
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148389
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141939
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137932
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137893
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/133813

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Security Privileged Identity Manager appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ibm.co/2Sr6snQ