IBM Security Bulletin: Vulnerabilities in Struts v2 affect IBM Spectrum Control (formerly Tivoli Storage Productivity Center) CVE-2016-1181, CVE-2016-1182
Struts v2 vulnerabilities affet IBM Spectrum Control and Tivoli Storage Productivity Center. IBM Spectrum Control and Tivoli Storage Productivity Center have addressed the applicable CVEs.
CVE(s): CVE-2016-1181, CVE-2016-1182
Affected product(s) and affected version(s):
IBM Spectrum Control 5.2.8 through 5.2.10.1
Tivoli Storage Productivity Center 5.2.0 through 5.2.7.1
The versions listed above apply to all licensed offerings of IBM Spectrum Control and Tivoli Storage Productivity Center, including IBM SmartCloud Virtual Storage Center Storage Analytics Engine.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2c4CmOV
X-Force Database: http://ift.tt/2974C3a
X-Force Database: http://ift.tt/29tkNpV
from IBM Product Security Incident Response Team http://ift.tt/2chyb5P