IBM Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to multiple security vulnerabilities for IBM WebSphere Liberty Server

IBM has announced a release for IBM Security Identity Governance and Intelligence (IGI) in response to multiple security vulnerabilities. There are multiple vulnerabilities in IBM® WebSphere Liberty Server, Version 18.0.0.4 included in this release of IGI. These issues were disclosed as part of the IBM WebSphere Liberty version 17.0.0.3 and upwards.

CVE(s): CVE-2018-8039, CVE-2014-7810, CVE-2018-1851, CVE-2017-1681, CVE-2018-1683, CVE-2018-1767

Affected product(s) and affected version(s):
IBM Security Identity Governance and Intelligence (IGI) 5.2, 5.2.1, 5.2.2, 5.2.2.1, 5.2.3, 5.2.3.1, 5.2.3.2, 5.2.4, 5.2.4.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10872112
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/145516
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/103155
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/150999
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134003
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/145455
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148621

The post IBM Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to multiple security vulnerabilities for IBM WebSphere Liberty Server appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2T7Xz30