Jul 26, 2018 9:01 am EDT
Categorized: High Severity
Share this post:
The IBM Emptoris Strategic Supply Management suite of products are affected by multiple security vulnerabilities that exist in the IBM SDK Java Technology Edition that is shipped with IBM WebSphere Application Server. The security bulletin includes issues that were disclosed as part of the IBM Java SDK updates in April 2018. The IBM Emptoris Strategic Supply Management Suite of products include IBM Emptoris Contract Management, IBM Emptoris Spend Analysis, IBM Emptoris Strategic Supply Management, IBM Emptoris Supplier Lifecycle Management.
CVE(s): CVE-2018-2800, CVE-2018-2783
Affected product(s) and affected version(s):
IBM Emptoris Strategic Supply Management 10.0.0 through 10.1.1.21
IBM Emptoris Supplier Lifecycle Management 10.0.0 through 10.1.1.12
IBM Emptoris Contract Management 10.0.0 through 10.1.1.21
IBM Emptoris Spend Analysis 10.0.0 through 10.1.1.21
IBM Emptoris Services Procurement 10.0.0 through 10.1.1.0
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10718395
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141956
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141939
from IBM Product Security Incident Response Team https://ift.tt/2LKqxl3
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.