IBM Integration Bus and WebSphere Message Broker, upon installation, set incorrect permissions for an object, which exposes it to an unintended actor.
CVE(s): CVE-2016-0394
Affected product(s) and affected version(s):
IBM Integration Bus V10
IBM Integration Bus V9
WebSphere Message Broker V8
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2fFBGzh
X-Force Database: http://ift.tt/2gzG47q
from IBM Product Security Incident Response Team http://ift.tt/2fFKXrf
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.