IBM Security Bulletin: IBM Sterling Order Management is affected by a vulnerability (CVE-2017-5638)
Apr 25, 2017 10:00 am EDT
Categorized: High Severity
IBM Sterling Order Management use Apache Struts 2 and is affected by some of the vulnerabilities that exist in Apache Struts 2
CVE(s): CVE-2017-5638
Affected product(s) and affected version(s):
IBM Sterling Selling and Fulfillment Foundation 9.1.0
IBM Sterling Selling and Fulfillment Foundation 9.2.0
IBM Sterling Selling and Fulfillment Foundation 9.2.1
IBM Sterling Selling and Fulfillment Foundation 9.3.0
IBM Sterling Selling and Fulfillment Foundation 9.4.0
IBM Sterling Selling and Fulfillment Foundation 9.5.0
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2qao4Sb
X-Force Database: http://ift.tt/2m6OQ0m
from IBM Product Security Incident Response Team http://ift.tt/2qalRqb