High Severity

IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Cloud Manager with OpenStack

Share this post:

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, used by IBM Cloud Manager with OpenStack. IBM Cloud Manager with OpenStack has addressed the applicable CVEs. These issues were disclosed as part of the IBM® Runtime Environment Java™ updates in July 2019.

CVE(s): CVE-2019-7317, CVE-2019-2769, CVE-2019-2762, CVE-2019-2816, CVE-2019-2786, CVE-2019-2766, CVE-2019-11772, CVE-2019-11775, CVE-2019-4473, CVE-2019-11771

Affected product(s) and affected version(s):

Affected Product Name Affected Versions
IBM Cloud Manager with OpenStack 4.3

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/1097853
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/156548
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/163832
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/163826
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/163878
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/163849
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/163829
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/163990
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/164479
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/163984
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/163989

More stories

Security Bulletin: SQL Injection Affects IBM Emptoris Spend Analysis (CVE-2019-4752)

Feb 19, 2020 7:01 pm EST | High Severity

SQL Injection affects IBM Emptoris Spend Analysis. ...read more

Security Bulletin: Resilient is vulnerable to Using Components with Known Vulnerabilities

Feb 19, 2020 7:00 pm EST | High Severity

The product includes vulnerable components (e.g., framework libraries) that may be identified and exploited with automated tools. ...read more

Security Bulletin: IBM WebSphere Cast Iron Solution & App Connect Professional is affected by Apache Tomcat vulnerabilities.

Feb 19, 2020 7:00 pm EST | High Severity

IBM WebSphere Cast Iron Solution & App Connect Professional has addressed the following vulnerabilities reported in Apache Tomcat. ...read more