Oct 1, 2020 8:01 pm EDT
Categorized: Medium Severity
Share this post:
The App Connect Enterprise Certified Container Dashboard is vulnerable to CVE-2019-11324 through its use of CouchDB for storing flow data, where the Operator is installed in a Restricted Network cluster.
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| App Connect Enterprise Certified Container | 1.0.0 with Operator |
| App Connect Enterprise Certified Container | 1.0.1 with Operator |
| App Connect Enterprise Certified Container | 1.0.2 with Operator |
| App Connect Enterprise Certified Container | 1.0.3 with Operator |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6340085
from IBM Product Security Incident Response Team https://ift.tt/3jn76w2
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.