Thursday, February 27, 2020

Security Bulletin: Apache Log4j vulnerability affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center) (CVE-2019-17571)

Apache Log4j could allow a remote attacker to execute arbitrary code on the system, caused by improper deserialization of untrusted data in SocketServer. This vulnerability affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center).

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.3.0 – 5.3.5

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1488939

The post Security Bulletin: Apache Log4j vulnerability affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center) (CVE-2019-17571) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team https://ift.tt/2Puus67

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.