Aug 31, 2020 8:04 pm EDT
Categorized: Critical Severity
Share this post:
Faster-XML Jackson-databind (excludes most polymorphic typing gadget attacks) (Publicly disclosed vulnerability) is used by IBM Operations Analytics Predictive Insights. IBM Operations Analytics Predictive Insights has addressed the applicable CVEs. Note that the usage of Jackson-databind within IBM Operations Analytics Predictive Insights is limited to the REST Mediation utility. If you do not have this service installed you are not affected by this bulletin.
Affected product(s) and affected version(s):
Affected Product(s) | Version(s) |
IBM Operations Analytics Predictive Insights | 1.3.6 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6324679
from IBM Product Security Incident Response Team https://ift.tt/32HU19l
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.