There are three vulnerabilities in Nimbus JOSE+JWT 3.1.2 used by IBM Spectrum Conductor 2.4.1, IBM Spectrum Conductor 2.4.0 and IBM Spectrum Conductor 2.3.0. IBM Spectrum Conductor 2.4.1, IBM Spectrum Conductor 2.4.0 and IBM Spectrum Conductor 2.3 have addressed the applicable CVEs.
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| IBM Spectrum Conductor | 2.4 |
| IBM Spectrum Conductor | 2.4.1 |
| IBM Spectrum Conductor | 2.3 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6219272
The post Security Bulletin: Three vulnerabilities in Nimbus JOSE+JWT affect IBM Spectrum Conductor appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2U8G40P
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.