IBM Security Bulletin: Error Message Vulnerabilities Affect IBM Emptoris Sourcing, IBM Emptoris Contract Management and IBM Emptoris Spend Analysis.
Detailed error messages are revealed in IBM Emptoris Sourcing, IBM Emptoris Contract Management and IBM Emptoris Spend Analysis.
CVE(s): CVE-2019-4308, CVE-2019-4484, CVE-2019-4485
Affected product(s) and affected version(s):
IBM Emptoris Sourcing 10.1.0 through 10.1.3
IBM Contract Management 10.1.0 through 10.1.3
IBM Emptoris Spend Analysis 10.1.0 through 10.1.3
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10880221
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/161034
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/164068
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/164069
The post IBM Security Bulletin: Error Message Vulnerabilities Affect IBM Emptoris Sourcing, IBM Emptoris Contract Management and IBM Emptoris Spend Analysis. appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2KHRQLg