IBM Security Bulletin: OpenSSL as used in IBM QRadar SIEM is vulnerable to multiple CVE’s.
OpenSSL vulnerabilities disclosed on May 3 2016, http://ift.tt/26OYfYP plus CVE-2016-2842.
CVE(s): CVE-2016-2105, CVE-2016-2106, CVE-2016-2107, CVE-2016-2108, CVE-2016-2109, CVE-2016-2842
Affected product(s) and affected version(s):
IBM QRadar 7.1.n
- IBM QRadar 7.2.n
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2aLqJN7
X-Force Database: http://ift.tt/1NwOPLs
X-Force Database: http://ift.tt/25myFMu
X-Force Database: http://ift.tt/1NwOQz5
X-Force Database: http://ift.tt/1VjTr9i
X-Force Database: http://ift.tt/1Z0wO8Z
X-Force Database: http://ift.tt/24fOBfM
from IBM Product Security Incident Response Team http://ift.tt/2axFiHc