IBM Security Bulletin: WebSphere Message Broker and IBM Integration Bus are affected by information disclosure vulnerability (CVE-2017-1126)

IBM Integration Bus and WebSphere Message Broker have addressed the vulnerability that would allow an unauthorized user to obtain sensitive information about software versions, and which could lead to further attacks.

CVE(s): CVE-2017-1126

Affected product(s) and affected version(s):

IBM Integration Bus V9.0.0.0 – V9.0.0.8 and V10.0.0.0 – V10.0.0.9

WebSphere Message Broker V8.0.0.0 – V8.0.0.8

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2fKP4Im
X-Force Database: http://ift.tt/2xSqHiu

The post IBM Security Bulletin: WebSphere Message Broker and IBM Integration Bus are affected by information disclosure vulnerability (CVE-2017-1126) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2fIwYH6