Jul 10, 2019 9:01 am EDT
Categorized: High Severity
Share this post:
A vulnerability exists in Apache Tomcat to which the IBM FlashSystem™ V840 and FlashSystem V9000 are susceptible (CVE-2018-11784). An exploit of this vulnerability could allow a remote attacker to redirect a user to arbitrary websites.
CVE(s): CVE-2018-11784
Affected product(s) and affected version(s):
Storage Node machine type and models (MTMs) affected:
- 9846-AE1 and 9848-AE1
- 9846-AE2 and 9848-AE2
- 9846-AE3 and 9848-AE3
Controller Node MTMs affected:
- 9846-AC0 and 9848-AC0
- 9846-AC1 and 9848-AC1
- 9846-AC2 and 9848-AC2
- 9846-AC3 and 9848-AC3
Supported storage node code versions which are affected
- VRMFs prior to 1.4.8.2
- VRMFs prior to 1.5.2.5
- VRMFs prior to 1.6.1.0
Supported controller node code versions which are affected
· VRMFs prior to 7.8.1.8
· VRMFs prior to 8.1.3.4
· VRMFs prior to 8.2.0.2
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10957185
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/150860
from IBM Product Security Incident Response Team https://ift.tt/2LgGM9h
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.