Medium Severity

IBM Security Bulletin: A security vulnerability affects IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise Edition (CVE-2019-4398)

Share this post:

IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise has identified and addressed the session management cookies vulnerability.

CVE(s): CVE-2019-4398

Affected product(s) and affected version(s):

IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise 2.5, 2.5.0.1, 2.5.0.2, 2.5.0.3, 2.5.0.4, 2.5.0.5, 2.5.0.6, 2.5.0.7, 2.5.0.8, 2.5.0.9

IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise 2.4, 2.4.0.1, 2.4.0.2, 2.4.0.3, 2.4.0.4, 2.4.0.5

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/1077123
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/162259

More stories

Security Bulletin: Vulnerability in Apache Commons Compress affects IBM Spectrum Protect Plus (CVE-2019-12402).

Feb 22, 2020 7:00 pm EST | Medium Severity

A denial of service vulnerability in Apache Commons Compress affects IBM Spectrum Protect Plus. ...read more



Security Bulletin: Multiple vulnerabilities in Linux Kernel affect IBM Spectrum Protect Plus

Feb 22, 2020 7:00 pm EST | Medium Severity

There are multiple security vulnerabilities in the Linux Kernel that affect IBM Spectrum Protect Plus. ...read more