There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 7.0 that is used by IBM Sterling External Authentication Server. These issues were disclosed as part of the IBM Java Runtime updates in April 2016 and July 2016.
CVE(s): CVE-2016-3426, CVE-2016-3485
Affected product(s) and affected version(s):
IBM Sterling External Authentication Server 2.4.3 through 2.4.3.0 iFix 1
IBM Sterling External Authentication Server 2.4.2 through 2.4.2.0 iFix 4
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2d0ecXn
X-Force Database: http://ift.tt/1N2N2xe
X-Force Database: http://ift.tt/2b7G65u
from IBM Product Security Incident Response Team http://ift.tt/2dFCPWT
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.