Low Severity

IBM Security Bulletin: Potential Spoofing vulnerability in WebSphere Application Server affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center) (CVE-2018-1902)

Share this post:

There is a potential spoofing vulnerability in IBM WebSphere Application Server which affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center).

CVE(s): CVE-2018-1902

Affected product(s) and affected version(s):

Affected Product Affected Versions
IBM Tivoli Storage Productivity Center 5.2.0 – 5.2.7.1
IBM Spectrum Control 5.2.8 – 5.2.17.2
IBM Spectrum Control 5.3.0 – 5.3.2

The versions listed above apply to all licensed offerings of IBM Spectrum Control.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10881003
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152531

More stories

Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2020-4243)

Aug 4, 2020 8:00 pm EDT | Low Severity

IBM has announced a release for IBM Security Identity Governance and Intelligence (IGI) in response to security vulnerability. The vulnerability concerns session not invalidated after Logout in IBM Security Access Request. ...read more


Security Bulletin: Vulnerability in GNU gettext affects IBM Spectrum Protect Plus (CVE-2018-18751)

Aug 3, 2020 8:01 pm EDT | Low Severity

Denial of service vulnerability in GNU gettext may affect IBM Spectrum Protect Plus. ...read more


Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Monitoring

Aug 3, 2020 8:01 pm EDT | Low Severity

There are several vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped as part of multiple IBM Tivoli Monitoring (ITM) components. ...read more