IBM Security Bulletin: Vulnerabilities in Struts v2 affect IBM Security Identity Manager ( CVE-2016-1181 CVE-2016-1182 )

Struts v2 vulnerabilities affect IBM Security Identity Manager. IBM Security Identity Manager has addressed the applicable CVEs. These issues were also addressed by IBM WebSphere Application Server, which is shipped with IBM Security Identity Manager.

CVE(s): CVE-2016-1181, CVE-2016-1182

Affected product(s) and affected version(s):

IBM Security Identity Manager version 6.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2edCQkV
X-Force Database: http://ift.tt/2974C3a
X-Force Database: http://ift.tt/29tkNpV



from IBM Product Security Incident Response Team http://ift.tt/2fEp9As