There is a vulnerability in OpenSSL to which the IBM® FlashSystem™ V840 is susceptible. An exploit of this vulnerability could allow a remote user with the ability to conduct a man-in-the-middle attack to decrypt traffic.
CVE(s): CVE-2016-2107
Affected product(s) and affected version(s):
FlashSystem V840 including machine type and models (MTMs) for all available code levels. MTMs affected include 9846-AE1, 9848-AE1, 9846-AC0, 9848-AC0, 9846-AC1, and 9848-AC1.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2cxsRYf
X-Force Database: http://ift.tt/1NwOQz5
from IBM Product Security Incident Response Team http://ift.tt/2c9VwVc
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.