IBM Security Bulletin: Pivotal Spring Framework vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (TADDM)

Multiple vulnerabilities have been identified in the OpenSource/Pivotal Spring Framework version that is embeddded in IBM Tivoli Application Dependency Discovery Manager (TADDM) thus requiring an upgrade to Spring Framework version 3.2.13.

CVE(s): CVE-2014-3578, CVE-2014-3625, CVE-2013-7315, CVE-2013-4152, CVE-2014-0054

Affected product(s) and affected version(s):

TADDM 7.2.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2m8a4rb
X-Force Database: http://ift.tt/2liEuZk
X-Force Database: http://ift.tt/2m8cGVE
X-Force Database: http://ift.tt/2e1fwwv
X-Force Database: http://ift.tt/2eeIMvh
X-Force Database: http://ift.tt/2eeHjVR

The post IBM Security Bulletin: Pivotal Spring Framework vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (TADDM) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2m8oaZu