IBM BigFix Platform did not require that users should have strong passwords by default. This has been addressed in BigFix 9.5.5 and 9.2.10 releases.
CVE(s): CVE-2017-1221
Affected product(s) and affected version(s):
IBM BigFix 9.5.4 and prior
IBM BigFix 9.2.9 and prior
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2zYhx1R
X-Force Database: http://ift.tt/2hux4Qq
The post IBM Security Bulletin: BigFix Platform versions 9.5 and 9.2 have a vulnerability fixed in patch releases appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2zYhof9
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.