Open Source Apache Struts vulnerabilities were disclosed in March 2016. Struts is used by SAN Volume Controller and Storwize Family in its Service Assistant GUI.
CVE(s): CVE-2016-0785, CVE-2016-2162
Affected product(s) and affected version(s):
IBM SAN Volume Controller
IBM Storwize V7000
IBM Storwize V5000
IBM Storwize V3700
IBM Storwize V3500
All products are affected when running supported releases 1.1 to 7.6.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1TXkkLh
X-Force Database: http://ift.tt/1saMeNi
X-Force Database: http://ift.tt/1TXkwtO
from IBM PSIRT Blog http://ift.tt/1OP98i2
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.