Friday, August 25, 2017

IBM Security Bulletin: IBM Cúram’s Social Program Management is vulnerable to a phishing through redirection vulnerability (CVE-2017-1195)

Phishing through redirection vulnerability in Resource Store servlet in Cúram’s Social Program Management product

CVE(s): CVE-2017-1195

Affected product(s) and affected version(s):

IBM Cúram Social Program Management 7.0.0.0 – 7.0.0.1
IBM Cúram Social Program Management 6.2.0.0 – 6.2.0.4
IBM Cúram Social Program Management 6.1.1.0 – 6.1.1.4
IBM Cúram Social Program Management 6.1.0.0 – 6.1.0.4
IBM Cúram Social Program Management 6.0.5.0 – 6.0.5.10
IBM Cúram Social Program Management 6.0.4.0 – 6.0.4.9

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2wuggSk
X-Force Database: http://ift.tt/2wb2xgs

The post IBM Security Bulletin: IBM Cúram’s Social Program Management is vulnerable to a phishing through redirection vulnerability (CVE-2017-1195) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2wuNZLr

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.