IBM Security Bulletin: IBM PureApplication System is affected by vulnerabilities in VMWare component (CVE-2018-6981 CVE-2018-6982)

Jan 25, 2019 9:02 am EST

Categorized: High Severity

Share this post:

There are vulnerabilities reported in the VMWare component that is used by IBM PureApplication System. IBM has released Version 2.2.5.3 for IBM PureApplication System, in response to CVE-2018-6981 and CVE-2018-6982. The following vulnerabilities have been addressed by IBM PureApplication System.

CVE(s): CVE-2018-6981, CVE-2018-6982

Affected product(s) and affected version(s):

IBM PureApplication System V2.2.3.0
IBM PureApplication System V2.2.3.1
IBM PureApplication System V2.2.3.2
IBM PureApplication System V2.2.4.0
IBM PureApplication System V2.2.5.0
IBM PureApplication System V2.2.5.1
IBM PureApplication System V2.2.5.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10795272
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152791
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152792

from IBM Product Security Incident Response Team https://ibm.co/2Wks6Z3