Home Unlabelled IBM Security Bulletin: Vulnerability in Pivotal Spring Framework affects IBM Marketing Software products suite (CVE-2014-3625)

IBM Security Bulletin: Vulnerability in Pivotal Spring Framework affects IBM Marketing Software products suite (CVE-2014-3625)

By
Thursday, April 20, 2017
Read
Add Comment

Apr 20, 2017 4:58 pm EDT

Categorized: Medium Severity

A directory traversal vulnerability in Pivotal Spring Framework allows remote attackers to read arbitrary files via unspecified vectors, related to static resource handling. This has been addressed in IBM Marketing Platform, IBM Campaign, IBM Interact, IBM Marketing Operations, IBM Contact Optimization, IBM Distributed Marketing and IBM Opportunity Detect.

CVE(s): CVE-2014-3625

Affected product(s) and affected version(s):

IBM Marketing Platform 10.0.0 and 10.0.0.1

IBM Campaign 10.0.0 and 10.0.0.1

IBM Interact 10.0.0 and 10.0.0.1

IBM Marketing Operations 10.0.0 and 10.0.0.1

IBM Contact Optimization 10.0.0 and 10.0.0.1

IBM Distributed Marketing 10.0.0 and 10.0.0.1

IBM Opportunity Detect 10.0.0 and 10.0.0.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2pI9ou2
X-Force Database: http://ift.tt/2m8cGVE



from IBM Product Security Incident Response Team http://ift.tt/2pIqTuy
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us