Open Source Apache Struts vulnerabilities were disclosed in March 2016. Struts is used by IBM® FlashSystem™ 840 and IBM FlashSystem 900 in its Service Assistant GUI.
CVE(s): CVE-2016-0785, CVE-2016-2162
Affected product(s) and affected version(s):
FlashSystem 840 including machine type and models (MTMs) for all available code levels. MTMs affected include 9840-AE1 and 9843-AE1.
FlashSystem 900 including machine type and models (MTMs) for all available code levels. MTMs affected include 9840-AE2 and 9843-AE2.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2axAFbz
X-Force Database: http://ift.tt/1saMeNi
X-Force Database: http://ift.tt/1TXkwtO
from IBM Product Security Incident Response Team http://ift.tt/29YgdCb
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.