Low Severity

IBM Security Bulletin: A vulnerability in Apache Commons Compress may affect IBM Cloud App Management V2018

Share this post:

There is a vulnerability in Apache Commons Compress used by IBM® Cloud App Management V2018. IBM® Cloud App Management has addressed the applicable CVE in a later version.

CVE(s): CVE-2018-11771

Affected product(s) and affected version(s):

IBM Cloud App Management V2018.2.0
IBM Cloud App Management V2018.4.0
IBM Cloud App Management V2018.4.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10883280
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148429

More stories

IBM Security Bulletin: IBM Maximo Anywhere does not have device root detection. (CVE-2019-4265)

Oct 9, 2019 9:01 am EDT | Low Severity

IBM Maximo Anywhere does not have device root detection which could result in an attacker gaining sensitive information about the device. CVE(s): CVE-2019-4265 Affected product(s) and affected version(s): Affected IBM Maximo Anywhere Affected Versions IBM Maximo Anywhere 7.6.2 IBM Maximo Anywhere 7.6.3 IBM Maximo Anywhere 7.6.1 IBM Maximo Anywhere 7.6.0 Refer to the following reference ...read more


IBM Security Bulletin: Daeja ViewONE Virtual may expose internal IP addresses (CVE-2019-4246)

Sep 30, 2019 9:01 am EDT | Low Severity

During certain operation Daeja ViewONE transmits the internal IP address to the client. CVE(s): CVE-2019-4246 Affected product(s) and affected version(s): Daeja ViewONE Virtual 5.0 – 5.0.6 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www.ibm.com/support/pages/node/884380X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159521 ...read more


IBM Security Bulletin: Vulnerability affects Watson Explorer Foundational Components (CVE-2018-0732, CVE-2018-0734, CVE-2018-0737)

Sep 19, 2019 9:00 am EDT | Low Severity

Security vulnerabilities affect IBM Watson Explorer Foundational Components. CVE(s): CVE-2018-0732, CVE-2018-0734, CVE-2018-0737 Affected product(s) and affected version(s): The vulnerabilities apply to the following products and versions: Affected Product Affected Versions Applicable Vulnerabilities IBM Watson Explorer Deep Analytics Edition Foundational Components 12.0.2, 12.0.2.1 CVE-2018-0734 CVE-2018-0737 IBM Watson Explorer Deep Analytics Edition Foundational Components 12.0.0, 12.0.1 CVE-2018-0732 ...read more