Low Severity

IBM Security Bulletin: Potential Spoofing vulnerability in WebSphere Application Server affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center) (CVE-2018-1902)

Share this post:

There is a potential spoofing vulnerability in IBM WebSphere Application Server which affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center).

CVE(s): CVE-2018-1902

Affected product(s) and affected version(s):

Affected Product Affected Versions
IBM Tivoli Storage Productivity Center 5.2.0 – 5.2.7.1
IBM Spectrum Control 5.2.8 – 5.2.17.2
IBM Spectrum Control 5.3.0 – 5.3.2

The versions listed above apply to all licensed offerings of IBM Spectrum Control.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10881003
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152531

More stories

IBM Security Bulletin: IBM Maximo Anywhere does not have device root detection. (CVE-2019-4265)

Oct 9, 2019 9:01 am EDT | Low Severity

IBM Maximo Anywhere does not have device root detection which could result in an attacker gaining sensitive information about the device. CVE(s): CVE-2019-4265 Affected product(s) and affected version(s): Affected IBM Maximo Anywhere Affected Versions IBM Maximo Anywhere 7.6.2 IBM Maximo Anywhere 7.6.3 IBM Maximo Anywhere 7.6.1 IBM Maximo Anywhere 7.6.0 Refer to the following reference ...read more


IBM Security Bulletin: Daeja ViewONE Virtual may expose internal IP addresses (CVE-2019-4246)

Sep 30, 2019 9:01 am EDT | Low Severity

During certain operation Daeja ViewONE transmits the internal IP address to the client. CVE(s): CVE-2019-4246 Affected product(s) and affected version(s): Daeja ViewONE Virtual 5.0 – 5.0.6 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www.ibm.com/support/pages/node/884380X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159521 ...read more


IBM Security Bulletin: Vulnerability affects Watson Explorer Foundational Components (CVE-2018-0732, CVE-2018-0734, CVE-2018-0737)

Sep 19, 2019 9:00 am EDT | Low Severity

Security vulnerabilities affect IBM Watson Explorer Foundational Components. CVE(s): CVE-2018-0732, CVE-2018-0734, CVE-2018-0737 Affected product(s) and affected version(s): The vulnerabilities apply to the following products and versions: Affected Product Affected Versions Applicable Vulnerabilities IBM Watson Explorer Deep Analytics Edition Foundational Components 12.0.2, 12.0.2.1 CVE-2018-0734 CVE-2018-0737 IBM Watson Explorer Deep Analytics Edition Foundational Components 12.0.0, 12.0.1 CVE-2018-0732 ...read more