Oct 1, 2020 8:01 pm EDT
Categorized: High Severity
Share this post:
IBM Cúram Social Program Management uses Apache Commons Codec libraries, for which there is a publicly known vulnerability. Apache Commons Codec could allow a remote attacker to obtain sensitive information, caused by the improper validation of input. An attacker could exploit this vulnerability using a method call to obtain sensitive information.
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| Curam SPM | 7.0.10 |
| Curam SPM | 7.0.9 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6340199
from IBM Product Security Incident Response Team https://ift.tt/3cWoO7i
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.