High Severity

IBM Security Bulletin: Server Automation is affected by the following vulnerabilities exposures (CVE-2018-8039, CVE-2018-1683, CVE-2018-1755)

Share this post:

Server Automation has addressed the following vulnerabilities against the REST module.

CVE(s): CVE-2018-8039, CVE-2018-1683, CVE-2018-1755

Affected product(s) and affected version(s):

Server Automation REST module, Version 9.5.49 or older.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10743011
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/145516
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/145455
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148597

More stories

IBM Security Bulletin: Remote Execution Vulnerability Affects Red Hat Linux Used By IBM WebSphere Application Server for IBM Cloud Private VM Quickstarter (CVE-2019-12735)

Aug 23, 2019 9:01 am EDT | High Severity

There is a security vulnerability that affects Red Hat Linux used by IBM WebSphere Application Server in the IBM Cloud. CVE(s): CVE-2019-12735 Affected product(s) and affected version(s): These vulnerabilities affect the following versions and releases of IBM WebSphere Application Server for IBM Cloud Private VM Quickstarter: 2.0 3.0 Refer to the following reference URLs for ...read more


IBM Security Bulletin: IBM Security Access Manager for Enterprise Single-Sign On is affected by an XML External Entity Injection (XXE) vulnerability (CVE-2019-4513)

Aug 22, 2019 9:01 am EDT | High Severity

IBM Security Access Manager for Enterprise Single-Sign On has addressed the following vulnerability: XML External Entity Injection (XXE) attack when processing XML data. CVE(s): CVE-2019-4513 Affected product(s) and affected version(s):IBM Security Access Manager for Enterprise Single-Sign On 8.2.2 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10996716X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/164555 ...read more


IBM Security Bulletin: This Power System update is being released to address CVE-2019-4169

Aug 22, 2019 9:01 am EDT | High Severity

POWER9: In response to an IPMI implementation error, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2019-4169. CVE(s): CVE-2019-4169 Affected product(s) and affected version(s):P9 OpenPOWER releases OP910 and OP920 are affected. Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10881209X-Force ...read more