There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 and IBM® Runtime Environment Java™ Versions 6, 7 and 8, used by Tivoli Netcool Performance Manager. Tivoli Netcool Performance Manager has addressed the applicable CVEs. These issues were disclosed as part of the IBM Java SDK updates in January 2018. These issues were also addressed by WebSphere Application Server shipped with Tivoli Netcool Performance Manager.
CVE(s): CVE-2018-2633 , CVE-2018-2603 , CVE-2018-2588 , CVE-2018-2602
Affected product(s) and affected version(s):
Tivoli Netcool Performance Manager 1.3.2 – 1.4.3
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=swg22014799
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137885
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137855
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137841
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137854
The post IBM Security Bulletin: Multiple Vulnerabilities in IBM Java SDK affect WebSphere Application Server shipped with Tivoli Netcool Performance Manager appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2mYdcHI
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.