Home Unlabelled IBM Security Bulletin: A vulnerability in Apache Struts affects the IBM FlashSystem model V840

IBM Security Bulletin: A vulnerability in Apache Struts affects the IBM FlashSystem model V840

By
Tuesday, April 18, 2017
Read
Add Comment

Apr 18, 2017 10:00 am EDT

Categorized: High Severity

There is a vulnerability in Apache Struts to which the IBM® FlashSystem™ V840 is susceptible. An exploit of this vulnerability (CVE-2017-5638) could allow a remote attacker to execute arbitrary code on the system.

CVE(s): CVE-2017-5638

Affected product(s) and affected version(s):

Affected Products and Versions of FlashSystem V840’s two node types

Storage Node
· Machine Type Models (MTMs) affected include 9846-AE1 and 9848-AE1
· Code versions affected include supported VRMFs:
o 1.4.0.0 – 1.4.6.0
o 1.3.0.0 – 1.3.0.7

Controller Node
· MTMs affected include 9846-AC0, 9848-AC0, 9846-AC1, and 9848-AC1
· Code versions affected include supported VRMFs:
o 7.8.0.0 – 7.8.0.2
o 7.7.0.0 – 7.7.1.5

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2nZ0Z8u
X-Force Database: http://ift.tt/2m6OQ0m



from IBM Product Security Incident Response Team http://ift.tt/2nZ1XS1
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us