IBM API Connect has addressed the following vulnerabilities. Several security issues were fixed in PHP’s HTML-embedded scripting language interpreter.
CVE(s): CVE-2018-10549, CVE-2018-10548, CVE-2018-10547, CVE-2018-10546, CVE-2018-10545
Affected product(s) and affected version(s):
IBM API Connect version 5.0.0.0-5.0.8.3
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10713449
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/142564
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/142565
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/142566
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/142567
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/142568
The post IBM Security Bulletin: API Connect Developer Portal is affected by multiple PHP vulnerabilities appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2n5H1Ga
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.