Friday, October 7, 2016

IBM Security Bulletin: IBM Web Experience Factory is affected by multiple security vulnerabilities in Apache POI

Apache POI, which is bundled with IBM Web Experience Factory, is vulnerable to denial of service attacks and could allow a remote attacker to obtain sensitive information.

CVE(s): CVE-2012-0213, CVE-2014-3574, CVE-2014-3529, CVE-2014-9527

Affected product(s) and affected version(s):

Web Experience Factory 8.0.0.0 – 8.0.0.3

Web Experience Factory 8.5.0.0 – 8.5.0.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2cZvuAX
X-Force Database: http://ift.tt/2dFdUrV
X-Force Database: http://ift.tt/2cOGReI
X-Force Database: http://ift.tt/2cOIhpQ
X-Force Database: http://ift.tt/2dFfcmC



from IBM Product Security Incident Response Team http://ift.tt/2dS3C7U
Posted by at

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.

Subscribe to: Post Comments (Atom)