Wednesday, December 6, 2017

IBM Security Bulletin: Multiple vulnerabilities in Node.js affect IBM API Connect (CVE-2017-1000381, CVE-2017-11499)

IBM API Connect has addressed Node.js vulnerabilities involving access to sensitive information and potential denial of service.

CVE(s): CVE-2017-1000381, CVE-2017-11499

Affected product(s) and affected version(s):

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2itVs4F
X-Force Database: http://ift.tt/2h8Xc5H
X-Force Database: http://ift.tt/2h8Xb1D

The post IBM Security Bulletin: Multiple vulnerabilities in Node.js affect IBM API Connect (CVE-2017-1000381, CVE-2017-11499) appeared first on IBM PSIRT Blog.

Affected IBM API Management Affected Versions
IBM API Connect 5.0.0.0-5.0.6.4
IBM API Connect 5.0.7.0-5.0.7.2
IBM API Connect 5.0.8.0


from IBM Product Security Incident Response Team http://ift.tt/2k0Muw1
Posted by at

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.

Subscribe to: Post Comments (Atom)