SymmetricalDataSecurity: Security Bulletin: Apache Struts (Publicly disclosed vulnerability) affects Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections

Wednesday, October 28, 2020

Security Bulletin: Apache Struts (Publicly disclosed vulnerability) affects Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections

Oct 28, 2020 8:01 pm EDT

Share this post:

Apache Struts is vulnerable to a denial of service, caused by an access permission override when performing a file upload. By sending a specially crafted request, an attacker could exploit this vulnerability to cause subsequent upload actions to fail.

Affected product(s) and affected version(s):

Affected Product(s)	Version(s)
Content Collector for Email	4.0.1.10
Content Collector for Microsoft SharePoint	4.0.1.10
Content Collector for File Systems	4.0.1.10
Content Collector for IBM Connections	4.0.1.10

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6356621

from IBM Product Security Incident Response Team https://ift.tt/3oEc36z

SymmetricalDataSecurity

Wednesday, October 28, 2020

Security Bulletin: Apache Struts (Publicly disclosed vulnerability) affects Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews