An unspecified vulnerability in Oracle Java SE related to the Java SE, Java SE Embedded, JRockit JNDI component could allow an unauthenticated attacker to take control of the system. An unspecified vulnerability in Oracle Java SE related to the Java SE, Java SE Embedded, JRockit Libraries component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown attack vectors, and obtain sensitive information resulting in a low confidentiality impact using unknown attack vectors.
CVE(s): CVE-2018-2633, CVE-2018-2603, CVE-2018-2579
Affected product(s) and affected version(s):
IBM InfoSphere Optim Performance Manager for DB2 on Linux, Unix, and Windows version 4.1 through 5.3.1
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=swg22014113
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137885
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137855
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/137833
The post IBM Security Bulletin: An unspecified vulnerability in Oracle Java SE related to the Java SE, Java SE Embedded, JRockit JNDI component could affect IBM InfoSphere Optim Performance Manager. CVE-2018-2633 CVE-2018-2603 CVE-2018-2579 appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2mYdfmS
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.