High Severity

Security Bulletin: Apache Struts (Publicly disclosed vulnerability) affects Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections

Share this post:

Apache Struts is vulnerable to a denial of service, caused by an access permission override when performing a file upload. By sending a specially crafted request, an attacker could exploit this vulnerability to cause subsequent upload actions to fail.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
Content Collector for Email 4.0.1.10
Content Collector for Microsoft SharePoint 4.0.1.10
Content Collector for File Systems 4.0.1.10
Content Collector for IBM Connections 4.0.1.10

 

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6359445

More stories

Security Bulletin: Multiple Vulnerabilities have been identified in IBM Db2 shipped with IBM StoredIQ for Legal

Feb 28, 2021 7:00 pm EST | High Severity

There are multiple vulnerabilities in IBM Db2 that affect IBM StoredIQ for Legal. These have been addressed in Fix Pack 2.0.3.13 of StoredIQ for Legal ...read more


Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Go

Feb 27, 2021 7:00 pm EST | High Severity

IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of Go. ...read more


Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in FasterXML jackson-databind

Feb 27, 2021 7:00 pm EST | High Severity

IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of FasterXML jackson-databind. ...read more