IBM Security Bulletin: A vulnerability in IBM® Java™ SDK and IBM® Java™ Runtime affects Web Experience Factory (CVE-2016-3485)

There is a vulnerability in IBM® SDK Java™ Technology Edition, Version 6 and IBM® Runtime Environment Java™ Version 6 that is used by Web Experience Factory. This issue was disclosed as part of the IBM Java SDK updates in July 2016. The vulnerability may affect some configurations of products bundled with Web Experience Factory.

CVE(s): CVE-2016-3485

Affected product(s) and affected version(s):

Web Experience Factory 8.5 and 8.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2dmXLDO
X-Force Database: http://ift.tt/2b7G65u



from IBM Product Security Incident Response Team http://ift.tt/2dR4Izm