Medium Severity

IBM Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Flex System Manager (FSM) Storage Manager Install Anywhere (SMIA) configuration tool (CVE-2017-3738, CVE-2017-3737)

Share this post:

Multiple vulnerabilities have been discovered in OpenSSL that was used by IBM FSM SMIA configuration tool (commonly known as Network Advisor). This bulletin addresses these vulnerabilities.

CVE(s): CVE-2017-3738, CVE-2017-3737

Affected product(s) and affected version(s):

Flex System Manager 1.3.4.2
Flex System Manager 1.3.4.1
Flex System Manager 1.3.4.0
Flex System Manager 1.3.3.2
Flex System Manager 1.3.3.1
Flex System Manager 1.3.3.0
Flex System Manager 1.3.2.3
Flex System Manager 1.3.2.2
Flex System Manager 1.3.2.1
Flex System Manager 1.3.2.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=isg3T1027022
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/136078
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/136077

More stories

Security Bulletin: Vulnerabilities in Node.js affect IBM Business Automation Workflow and IBM Business Process Manager (BPM) – CVE-2021-22960, CVE-2021-22959

Jan 26, 2022 7:00 pm EST | Medium Severity

Configuration Editor in IBM Business Process Manager and IBM Business Automation Workflow are vulnerable to a HTTP request smuggling attack. ...read more


Security Bulletin: IBM UrbanCode Release is affected by CVE-2020-17527

Jan 25, 2022 7:01 pm EST | Medium Severity

IBM UrbanCode Release version 6.2.2.7 - 6.2.5.2 are affected by CVE-2020-17527 ...read more


Security Bulletin: IBM UrbanCode Release is affected by CVE-2020-13935

Jan 25, 2022 7:00 pm EST | Medium Severity

IBM UrbanCode Release version 6.2.2.7 - 6.2.4 are affected by CVE-2020-13935 ...read more