Security Bulletin: Aspera Web Shares application is affected by NGINX Vulnerabilities (CVE-2018-16845, CVE-2018-16843, CVE-2019-7401)

IBM Aspera Shares has addressed the following OpenSSL vulnerabilities.

Affected product(s) and affected version(s):

Affected Product(s)	Version(s)
IBM Aspera Shares	1.9.12

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1489143

The post Security Bulletin: Aspera Web Shares application is affected by NGINX Vulnerabilities (CVE-2018-16845, CVE-2018-16843, CVE-2019-7401) appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team https://ift.tt/2HaGFYN