IBM Security Bulletin: Vulnerabilities in Oracle Outside In Technology Affect IBM WebSphere Portal (July 2018 CPU)
Oracle Outside In Technology is used by and contained in IBM WebSphere Portal. A fix is available for security vulnerabilities in Oracle Outside In Technology that affect IBM WebSphere Portal (CVE-2018-2992 CVE-2018-3092 CVE-2018-3093 CVE-2018-3094 CVE-2018-3095 CVE-2018-3096 CVE-2018-3097 CVE-2018-3098 CVE-2018-3099 CVE-2018-3102 CVE-2018-3103 CVE-2018-3104 CVE-2018-3009 CVE-2018-3010).
CVE(s): CVE-2018-3009, CVE-2018-3092, CVE-2018-3094, CVE-2018-3093, CVE-2018-3096, CVE-2018-3098, CVE-2018-3010, CVE-2018-3095, CVE-2018-3097, CVE-2018-3099, CVE-2018-3102, CVE-2018-3104, CVE-2018-3103, CVE-2018-2992
Affected product(s) and affected version(s):
| Affected Product | Affected Versions |
|---|---|
| IBM WebSphere Portal | 9.0.0.0 – 9.0.0.0 CF15 |
| IBM WebSphere Portal | 8.5.0.0 – 8.5.0.0 CF15 |
| IBM WebSphere Portal | 8.0.0.0 – 8.0.0.1 CF23 |
| IBM WebSphere Portal | 7.0.0.0 – 7.0.0.2 CF30 |
For unsupported versions IBM recommends upgrading to a fixed, supported version of the product.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10729317
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146906
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146986
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146988
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146987
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146990
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146992
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146907
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146989
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146991
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146993
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146996
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146998
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146997
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146889
The post IBM Security Bulletin: Vulnerabilities in Oracle Outside In Technology Affect IBM WebSphere Portal (July 2018 CPU) appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2Q6paw4