Jul 10, 2019 9:01 am EDT
Categorized: High Severity
Share this post:
A vulnerability exists in Apache Tomcat to which the IBM FlashSystem™ 840 and FlashSystem 900 are susceptible (CVE-2018-11784). An exploit of this vulnerability could allow a remote attacker to redirect a user to arbitrary websites.
CVE(s): CVE-2018-11784
Affected product(s) and affected version(s):
FlashSystem 840 machine type and models (MTMs) affected include 9840-AE1 and 9843-AE1.
FlashSystem 900 MTMs affected include 9843-UF3, 9840-AE2, 9843-AE2, 9840-AE3, and 9843-AE3.
Supported code versions which are affected
- VRMFs prior to 1.4.8.2
- VRMFs prior to 1.5.2.5
- VRMFs prior to 1.6.1.0
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10957183
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/150860
from IBM Product Security Incident Response Team https://ift.tt/2Ld04fR
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.