IBM Security Bulletin: Multiple vulnerabilities affect IBM Tivoli Monitoring embedded WebSphere Application and IHS server
The following security issues have been identified in the WebSphere Application Server and IHS server included as part of IBM Tivoli Monitoring (ITM) portal server.
CVE(s): CVE-2017-1380, CVE-2017-7679, CVE-2017-7668, CVE-2017-7659, CVE-2017-3169, CVE-2017-3167, CVE-2017-1501, CVE-2017-4343, CVE-2017-1583, CVE-2017-12618
Affected product(s) and affected version(s):
IBM Tivoli Monitoring versions 6.3.0 through 6.3.0 FP7 – Tivoli Enterprise Portal Server (TEPS) all CVEs above.
IBM Tivoli Monitoring versions 6.2.3 through 6.2.3 FP5 – Tivoli Enterprise Portal Server (TEPS) all CVE’s except for CVE-2011-4343 and CVE-2017-1583
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg22011813
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/127151
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/127420
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/127419
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/127418
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/127417
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/127416
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/129576
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/132287
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/132342
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134048
The post IBM Security Bulletin: Multiple vulnerabilities affect IBM Tivoli Monitoring embedded WebSphere Application and IHS server appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2CRIaqh