Home Unlabelled IBM Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Cloud Orchestrator (CVE-2016-5986)

IBM Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Cloud Orchestrator (CVE-2016-5986)

By
Tuesday, June 13, 2017
Read
Add Comment

There is a potential information disclosure vulnerability in WebSphere Application Server, Tivoli System Application Automation Manager, and Business Process Manager that are shipped with IBM Cloud Orchestrator standard and Enterprise editions. In addition, a potential information disclosure vulnerability has been identified in Jazz for Service Management that is shipped with IBM Cloud Orchestrator Enterprise edition. Information about a security vulnerability affecting IBM WebSphere Application Server, Tivoli System Application Automation Manager, Business Process Manager, and Jazz for Service Management have been published in security bulletins.

CVE(s): CVE-2016-5986

Affected product(s) and affected version(s):

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2sokg4V
X-Force Database: http://ift.tt/2ccJKps

The post IBM Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Cloud Orchestrator (CVE-2016-5986) appeared first on IBM PSIRT Blog.

Principal Product and Version(s)Affected Supporting Product and Version
IBM Cloud Orchestrator V2.5, V2.5.0.1, V2.5.0.2
  • IBM WebSphere Application Server V8.5.5 through V8.5.5.9
  • Tivoli System Application Automation Manager 4.1
  • Business Process Manager 8.5.6
IBM Cloud Orchestrator V2.4, V2.4.0.1, V2.4.0.2, V2.4.0.3, V2.4.0.4
  • IBM WebSphere Application Server V8.5.5 through V8.5.5.10
  • Tivoli System Application Automation Manager 4.1
  • Business Process Manager 8.5.5
IBM Cloud Orchestrator V2.3, V2.3 0.1
  • IBM WebSphere Application Server V8.0.1 through V8.0.0.11
  • Tivoli System Application Automation Manager 4.1
  • Business Process Manager 8.5.0.1
IBM Cloud Orchestrator Enterprise V2.5, V2.5.0.1, V2.5.0.2,
  • IBM WebSphere Application Server V8.5.5 through V8.5.5.9
  • Tivoli System Application Automation Manager 4.1
  • Business Process Manager 8.5.6 through 8.5.6.2
  • Jazz for Service Management 1.1.0.1
IBM Cloud Orchestrator Enterprise V2.4, V2.4.0.1, V2.4.0.2, V2.4.0.3, V2.4.0.4
  • IBM WebSphere Application Server V8.5.5 through V8.5.5.10
  • Tivoli System Application Automation Manager 4.1
  • Business Process Manager 8.5.5 through 8.5.6.2
  • Jazz for Service Management 1.1.0.1
IBM Cloud Orchestrator Enterprise V2.3, V2.3.0.1
  • IBM WebSphere Application Server V8.0.1 through V8.0.0.11
  • Tivoli System Application Automation Manager 4.1
  • Business Process Manager 8.5.0.1


from IBM Product Security Incident Response Team http://ift.tt/2sopvSr
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us