Home Unlabelled IBM Security Bulletin: Vulnerabilities in Apache Tomcat affect the IBM FlashSystem model V840

IBM Security Bulletin: Vulnerabilities in Apache Tomcat affect the IBM FlashSystem model V840

By
Monday, April 24, 2017
Read
Add Comment

Apr 24, 2017 10:00 am EDT

Categorized: High Severity

There are vulnerabilities in Apache Tomcat to which the IBM® FlashSystem™ V840 is susceptible. An exploit of these vulnerabilities (CVE-2016-6816, CVE-2016-6817, and CVE-2016-6796) could allow a remote attacker to obtain sensitive information, cause an application to enter an infinite loop, or bypass a configured SecurityManager

CVE(s): CVE-2016-6816, CVE-2016-6817, CVE-2016-6796

Affected product(s) and affected version(s):

Affected Products and Versions of FlashSystem V840’s two node types

Storage Node
· Machine Type Models (MTMs) affected include 9846-AE1 and 9848-AE1
· Code versions affected include supported VRMFs:
o 1.4.0.0 – 1.4.5.1
o 1.3.0.0 – 1.3.0.6

Controller Node
· MTMs affected include 9846-AC0, 9848-AC0, 9846-AC1, and 9848-AC1
· Code versions affected include supported VRMFs:
o 7.7.0.0 – 7.7.1.5
o 7.8.0.0 – 7.8.0.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2ongZS0
X-Force Database: http://ift.tt/2iIaaqs
X-Force Database: http://ift.tt/2iIey8S
X-Force Database: http://ift.tt/2if6ZDc



from IBM Product Security Incident Response Team http://ift.tt/2onlU5t
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us