High Severity

IBM Security Bulletin: Multiple Vulnerabilities in Apache Tomcat affects IBM UrbanCode Deploy (CVE-2018-11784)

Share this post:

Previous releases of IBM UrbanCode Deploy are affected by multiple vulnerabilities in Apache Tomcat.

CVE(s): CVE-2018-11784

Affected product(s) and affected version(s):

All fixpacks of IBM UrbanCode Deploy 6.1 – 6.1.3.8, IBM UrbanCode Deploy 6.2 – 6.2.7.3, and IBM UrbanCode Deploy 7.0-7.0.1.1 are affected.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10794677
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/150860

More stories

IBM Security Bulletin: Remote Execution Vulnerability Affects Red Hat Linux Used By IBM WebSphere Application Server for IBM Cloud Private VM Quickstarter (CVE-2019-12735)

Aug 23, 2019 9:01 am EDT | High Severity

There is a security vulnerability that affects Red Hat Linux used by IBM WebSphere Application Server in the IBM Cloud. CVE(s): CVE-2019-12735 Affected product(s) and affected version(s): These vulnerabilities affect the following versions and releases of IBM WebSphere Application Server for IBM Cloud Private VM Quickstarter: 2.0 3.0 Refer to the following reference URLs for ...read more


IBM Security Bulletin: IBM Security Access Manager for Enterprise Single-Sign On is affected by an XML External Entity Injection (XXE) vulnerability (CVE-2019-4513)

Aug 22, 2019 9:01 am EDT | High Severity

IBM Security Access Manager for Enterprise Single-Sign On has addressed the following vulnerability: XML External Entity Injection (XXE) attack when processing XML data. CVE(s): CVE-2019-4513 Affected product(s) and affected version(s):IBM Security Access Manager for Enterprise Single-Sign On 8.2.2 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10996716X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/164555 ...read more


IBM Security Bulletin: This Power System update is being released to address CVE-2019-4169

Aug 22, 2019 9:01 am EDT | High Severity

POWER9: In response to an IPMI implementation error, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2019-4169. CVE(s): CVE-2019-4169 Affected product(s) and affected version(s):P9 OpenPOWER releases OP910 and OP920 are affected. Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10881209X-Force ...read more