IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 used by Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections. These issues were disclosed as part of the IBM Java SDK updates in October 2017.

CVE(s): CVE-2017-10346, CVE-2017-10285

Affected product(s) and affected version(s):

Content Collector for Email 3.0 – 4.0.1

Content Collector for File Systems 3.0 – 4.0.1
Content Collector for Microsoft SharePoint 3.0 – 4.0.1
Content Collector for IBM Connections 3.0 – 4.0.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg22012739
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/133775
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/133723

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2n86gbe