There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 1.8 used by IBM Sterling External Authentication Server. These issues were disclosed as part of the IBM Java SDK updates in Jul 2017.
CVE(s): CVE-2017-10116, CVE-2017-10115
Affected product(s) and affected version(s):
IBM Sterling External Authentication Server 2.4.3.0 through 2.4.3.0 iFix 4
IBM Sterling External Authentication Server 2.4.2.0 through 2.4.2.0 iFix 7
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2zYhAen
X-Force Database: http://ift.tt/2wyaY8O
X-Force Database: https://exchange.xfor_blankhttp://ift.tt/2hvK74b
The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Sterling External Authentication Server appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2huP6BW
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.