IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Integration Bus and IBM App Connect Enterpise v11

Summary There are multiple vulnerabilities in IBM® SDK Java Technology Edition, Version 8.0.5.27 & Versions 7.0.10.35 used by IBM Integration Bus & IBM App Connect Enterprise V11. These issues were disclosed as part of the IBM Java SDK updates in January 2019

CVE(s): CVE-2018-1890, CVE-2018-12547, CVE-2019-2426

Affected product(s) and affected version(s):

IBM App Connect Enterprise V11 , V11.0.0.0 – V11.0.0.4

IBM Integration Bus V10.0.0.0 – V10.0.0.16

IBM Integration Bus V9.0.0.0 – V9.0.0.11

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10956417
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152081
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/157512
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/155744

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Integration Bus and IBM App Connect Enterpise v11 appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2Jo7OcH