Sep 26, 2017 10:00 am EDT
Categorized: Medium Severity
Share this post:
A potential cross-site scripting vulnerability exists in the DataPower system log. IBM has addressed the applicable CVE.
CVE(s): CVE-2017-1591
Affected product(s) and affected version(s):
IBM DataPower Gateways appliances, versions through 7.0.0.0-7.0.0.19, 7.1.0.0-7.1.0.18, 7.2.0.0-7.2.0.15, 7.5.0.0-7.5.0.9, 7.5.1.0-7.5.1.8, 7.5.2.0-7.5.2.8, 7.6.0.0
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2hwJ7Mf
X-Force Database: http://ift.tt/2hviB9E
from IBM Product Security Incident Response Team http://ift.tt/2hx43Tc
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.