IBM Security Bulletin: Multiple Vulnerabilities in IBM Java SDK Affect IBM B2B Advanced Communications

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 Service Refresh 9 Fix Pack 60 that is used by IBM B2B Advanced Communications. This issue was disclosed as part of the IBM Java SDK updates in July 2017

CVE(s): CVE-2017-10115, CVE-2017-10116

Affected product(s) and affected version(s):

IBM Multi-Enterprise Integration Gateway 1.0 – 1.0.0.1

IBM B2B Advanced Communications 1.0.0.2 – 1.0.0.5_3

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2qXrYDh
X-Force Database: http://ift.tt/2xsr7ZC
X-Force Database: http://ift.tt/2wyaY8O

The post IBM Security Bulletin: Multiple Vulnerabilities in IBM Java SDK Affect IBM B2B Advanced Communications appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2ATAQK3