IBM Security Bulletin: IBM Systems Director (ISD) Storage Control is affected by vulnerabilities in IBM Java Runtime.

There are vulnerabilities addressed in IBM Runtime Environment Java™Technology Edition that is used by ISD Storage Control. The Java issues were disclosed as part of the IBM Java updates for July 2017.

CVE(s): CVE-2017-10198, CVE-2017-10125, CVE-2017-10067, CVE-2017-10115, CVE-2017-10118, CVE-2017-10176, CVE-2017-10116, CVE-2017-10193, CVE-2017-10108, CVE-2017-10109, CVE-2017-10135

Affected product(s) and affected version(s):

From the IBM Systems Director command line enter smcli lsver to determine the level of IBM Systems Director installed.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2gzmZ45
X-Force Database: http://ift.tt/2vQpmnS
X-Force Database: http://ift.tt/2vfEyLU
X-Force Database: http://ift.tt/2x4YZ1U
X-Force Database: http://ift.tt/2xsr7ZC
X-Force Database: http://ift.tt/2vQnzPT
X-Force Database: http://ift.tt/2wpoWsl
X-Force Database: http://ift.tt/2wyaY8O
X-Force Database: http://ift.tt/2wpoYAt
X-Force Database: http://ift.tt/2vff6pW
X-Force Database: http://ift.tt/2vEvu3j
X-Force Database: http://ift.tt/2wp6HTz

The post IBM Security Bulletin: IBM Systems Director (ISD) Storage Control is affected by vulnerabilities in IBM Java Runtime. appeared first on IBM PSIRT Blog.

Affected Product and Version(s)Product and Version shipped as a component
IBM System Director Storage Control 4.2.6IBM Systems Director 6.3.5
IBM System Director Storage Control 4.2.7IBM Systems Director 6.3.6
IBM System Director Storage Control 4.2.8IBM Systems Director 6.3.7


from IBM Product Security Incident Response Team http://ift.tt/2i6tn6A