Medium Severity

IBM Security Bulletin: Vulnerabilities in OpenSSL and strongswan affect IBM Flex System FC3171 8Gb SAN Switch & SAN Pass-thru

Share this post:

The following vulnerabilities in OpenSSL and strongswan have been addressed by IBM Flex System FC3171 8Gb SAN Switch & SAN Pass-thru.

CVE(s): CVE-2018-0739, CVE-2018-10811

Affected product(s) and affected version(s):

Product

Affected Version

IBM Flex System FC3171 8Gb SAN Switch and
IBM Flex System FC3171 8Gb SAN Pass-thru Firmware Update

9.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10887845
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140847
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/145182

More stories

IBM Security Bulletin: A Security Vulnerability affects Cloud Foundry for IBM Cloud Private (CVE-2019-3789)

Jul 15, 2019 9:01 am EDT | Medium Severity

A security vulnerability affects Cloud Foundry for IBM Cloud Private CVE(s): CVE-2019-3789 Affected product(s) and affected version(s):Cloud Foundry for IBM Cloud Private 3.2.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=ibm10885324X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160104 ...read more


IBM Security Bulletin: IBM QRadar SIEM is vulnerable to cross site scripting (XSS) (CVE-2019-4211)

Jul 11, 2019 9:02 am EDT | Medium Severity

IBM QRadar SIEM is vulnerable to cross site scripting (XSS) CVE(s): CVE-2019-4211 Affected product(s) and affected version(s): · IBM QRadar 7.3 to 7.3.2 Patch 1 · IBM QRadar 7.2 to 7.2.8 Patch 15 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10957143X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159131 ...read more


IBM Security Bulletin: IBM Jazz for Service Management is missing function level access control that could allow a user to delete authorized resources (CVE-2019-4194)

Jul 11, 2019 9:02 am EDT | Medium Severity

IBM Jazz for Service Management is missing function level access control that could allow a user to delete authorized resources CVE(s): CVE-2019-4194 Affected product(s) and affected version(s):Jazz for Service Management version 1.1.3 – 1.1.3.2 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10885989X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159033 ...read more