There are vulnerabilities in IBM® Runtime Environment Java
Technology Edition, Version 8 that is used by IBM Storwize V7000 Unified. These issues were disclosed as part of the IBM Java SDK updates in Oct 2018.
CVE(s): CVE-2018-3139, CVE-2018-3136, CVE-2018-13785, CVE-2018-3180, CVE-2018-3149, CVE-2018-3169, CVE-2018-3183
Affected product(s) and affected version(s):
IBM Storwize V7000 Unified
The product is affected when running supported code releases 1.6.0.0 to 1.6.2.5. The product running unsupported code releases 1.5 or earlier are also affected.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10872558
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151455
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151452
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146015
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151497
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151465
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151486
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151500
The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affects IBM Storwize V7000 Unified appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ibm.co/2UJbM24
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.