Fixes are available for a vulnerability in Apache Commons FileUpload affecting IBM WebSphere Portal (CVE-2016-1000031).
CVE(s): CVE-2016-1000031
Affected product(s) and affected version(s):
IBM WebSphere Portal is affected by this issue in two ways.
1) Through IBM WebSphere Application Server which is shipped with IBM WebSphere Portal.
2) Through IBM WebSphere Portal Server.
For unsupported versions IBM recommends upgrading to a fixed, supported version of the product.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg22012419
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/117957
The post IBM Security Bulletin: Vulnerability in Apache Commons FileUpload Affects IBM WebSphere Portal (CVE-2016-1000031) appeared first on IBM PSIRT Blog.
| Affected Product | Affected Versions |
| IBM WebSphere Portal | 9.0.0.0 – 9.0.0.0 CF14 |
| IBM WebSphere Portal | 8.5.0.0 – 8.5.0.0 CF14 |
| IBM WebSphere Portal | 8.0.0.0 – 8.0.0.1 CF22 |
| IBM WebSphere Portal | 7.0.0.0 – 7.0.0.2 CF30 |
| Principal Product and Version(s) | Affected Supporting Product and Version |
| IBM WebSphere Portal version 7.0, 8.0, 8.5, 9.0 | IBM WebSphere Application Server version 7.0, 8.0, 8.5, 9.0 |
from IBM Product Security Incident Response Team http://ift.tt/2HhjdIs
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.