IBM Security Bulletin: Multiple vulnerabilities in Drupal Core affect IBM API Management (CVE-2016-9449, CVE-2016-9450, CVE-2016-9451, CVE-2016-9452)

Drupal is used by the Advanced Developer Portal in IBM API Management. IBM API Management has updated the level of Drupal it provides to address the applicable CVEs.

CVE(s): CVE-2016-9449, CVE-2016-9450, CVE-2016-9451, CVE-2016-9452

Affected product(s) and affected version(s):

IBM API Management V4.0.0.0 – V4.0.4.4

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2nEht5O
X-Force Database: http://ift.tt/2ptuMCJ
X-Force Database: http://ift.tt/2nEcz8Y
X-Force Database: http://ift.tt/2ptDFMs
X-Force Database: http://ift.tt/2nEyooL

The post IBM Security Bulletin: Multiple vulnerabilities in Drupal Core affect IBM API Management (CVE-2016-9449, CVE-2016-9450, CVE-2016-9451, CVE-2016-9452) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2ptuOul