IBM Security Bulletin: A vulnerability in IBM WebSphere Application Server affects IBM Spectrum Scale packaged in IBM Elastic Storage Server (CVE-2018-8039)

There is a vulnerability in IBM WebSphere Application Server, used by IBM Spectrum Scale. This issue may allow a remote attacker to conduct a man-in-the-middle attack.

CVE(s): CVE-2018-8039

Affected product(s) and affected version(s):

The Elastic Storage Server 5.3 thru 5.3.2.0
The Elastic Storage Server 5.0.0 thru 5.2.4
The Elastic Storage Server 4.5.0 thru 4.6.0
The Elastic Storage Server 4.0.0 thru 4.0.6

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10792323
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/145516

The post IBM Security Bulletin: A vulnerability in IBM WebSphere Application Server affects IBM Spectrum Scale packaged in IBM Elastic Storage Server (CVE-2018-8039) appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2Ot5q5m