IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Security AppScan Enterprise

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version (build pwi3280sr2fp10-20160108_01(SR2 FP10)) used by IBM Security AppScan Enterprise. These issues were disclosed as part of the IBM Java SDK updates in Jul 2017

CVE(s): CVE-2017-10115, CVE-2017-10116, CVE-2016-5547

Affected product(s) and affected version(s):

IBM Security AppScan Enterprise: 9.0.3 – 9.0.3.5 iFix002

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2zQc5m5
X-Force Database: http://ift.tt/2xsr7ZC
X-Force Database: http://ift.tt/2wyaY8O
X-Force Database: http://ift.tt/2msBF5I

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Security AppScan Enterprise appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2zN8bub