Tuesday, September 26, 2017

IBM Security Bulletin: Vulnerability in system log on IBM DataPower Gateways WebGUI console (CVE-2017-1591)

Share this post:

A potential cross-site scripting vulnerability exists in the DataPower system log. IBM has addressed the applicable CVE.

CVE(s): CVE-2017-1591

Affected product(s) and affected version(s):

IBM DataPower Gateways appliances, versions through 7.0.0.0-7.0.0.19, 7.1.0.0-7.1.0.18, 7.2.0.0-7.2.0.15, 7.5.0.0-7.5.0.9, 7.5.1.0-7.5.1.8, 7.5.2.0-7.5.2.8, 7.6.0.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2hwJ7Mf
X-Force Database: http://ift.tt/2hviB9E



from IBM Product Security Incident Response Team http://ift.tt/2hx43Tc

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.