Monday, June 26, 2017

IBM Security Bulletin: Vulnerability affects WebSphere Application Server shipped with IBM Cloud Orchestrator and Cloud Orchestrator Enterprise (CVE-2016-3092)

There is a security vulnerability in WebSphere Application Server, IBM Business Process Manager, and IBM Tivoli System Automation Application Manager that is shipped with IBM Cloud Orchestrator and Cloud Orchestrator Enterprise. Additionally, the vulnerability affects Jazz™ for Service Management and IBM Tivoli Monitoring, which are shipped with Cloud Orchestrator Enterprise.

CVE(s): CVE-2016-3092

Affected product(s) and affected version(s):

Principal Product and Version(s)
Affected Supporting Product and Version

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2tb7Xc1
X-Force Database: http://ift.tt/2bozrA8

The post IBM Security Bulletin: Vulnerability affects WebSphere Application Server shipped with IBM Cloud Orchestrator and Cloud Orchestrator Enterprise (CVE-2016-3092) appeared first on IBM PSIRT Blog.

IBM Cloud Orchestrator V2.5, V2.5.0.1, V2.5.0.2
  • WebSphere Application Server V8.5.5 through V8.5.5.7
  • IBM Business Process Manager Standard V8.5.5 – V8.5.6.2
  • IBM Tivoli System Automation Application Manager 4.1
IBM Cloud Orchestrator V2.4, V2.4.01, V2.4.0.2,V2.4.0.3, 2.4.0.4
  • WebSphere Application Server V8.5.0.1 through V8.5.5.7
  • IBM Business Process Manager Standard V8.5.0.1
  • IBM Tivoli System Automation Application Manager 4.1
IBM Cloud Orchestrator V2.3, V2.3.0.1
  • IBM WebSphere Application Server V8.0, V8.0.11
  • IBM Business Process Manager Standard V8.5.0.1
IBM Cloud Orchestrator Enterprise V2.5, V2.5.0.1, V2.5.0.2
  • WebSphere Application Server V8.5.5 through V8.5.5.7
  • IBM Business Process Manager Standard V8.5.5 – V8.5.6.2
  • IBM Tivoli System Automation Application Manager 4.1
  • IBM Tivoli Monitoring 6.3.0.2
  • Jazz™ for Service Management V1.1.0.1
IBM Cloud Orchestrator Enterprise V2.4, V2.4.01, V2.4.0.2,V2.4.0.3
  • WebSphere Application Server V8.5.0.1 through V8.5.5.7
  • IBM Business Process Manager Standard V8.5.0.1
  • IBM Tivoli System Automation Application Manager 4.1
  • IBM Tivoli Monitoring 6.3.0.2
  • Jazz™ for Service Management V1.1.0.1
IBM Cloud Orchestrator Enterprise V2.3, V2.3.0.1
  • IBM WebSphere Application Server V8.0, V8.0.11
  • IBM Business Process Manager Standard V8.5.0.1
  • IBM Tivoli Monitoring V6.3.0.1
  • Jazz™ for Service Management V1.1.0.1


from IBM Product Security Incident Response Team http://ift.tt/2taUHnJ

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.