IBM Security Bulletin: Multiple vulnerabilities in Apache Tomcat, Open SSL, and Apache HTTPD affects Rational Build Forge

Apache Tomcat, Open SSL, and Apache Tomcat have multiple security vulnerabilities that could allow a remote attacker to exploit the Rational Build Forge application. Respective security vulnerabilities are discussed in detail in the subsequent sections.

CVE(s): CVE-2018-8014, CVE-2018-8034, CVE-2018-0732, CVE-2018-0737, CVE-2018-1333, CVE-2018-8011

Affected product(s) and affected version(s):

All the versions of IBM Rational Build Forge from 8.0 through 8.0.0.8.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=ibm10719629
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/143411
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/147211
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/144658
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141679
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146701
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146700

The post IBM Security Bulletin: Multiple vulnerabilities in Apache Tomcat, Open SSL, and Apache HTTPD affects Rational Build Forge appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team https://ift.tt/2FL70PE