Medium Severity

Security Bulletin: IBM Planning Analytics has addressed multiple Security Vulnerabilities

Share this post:

This Security Bulletin addresses security vulnerabilities that have been remediated in IBM Planning Analytics 2.0.9.1. There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8 used by IBM Planning Analytics. These issues were disclosed as part of the IBM Java SDK updates in October 2019 and January 2020. IBM Planning Analytics has addressed the applicable CVEs. A Cross-Site Scripting (XSS) vulnerabiltiy in the PMHub Admin/Config Page has also been addressed.

Affected product(s) and affected version(s):

IBM Planning Analytics 2.0.0 – 2.0.9

 

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6213263

More stories

Security Bulletin: A vulnerability in IBM Java Runtime affects Rational Asset Analyzer

Jul 1, 2020 8:01 pm EDT | Medium Severity

There is a vulnerability in IBM® Runtime Environment Java™ used by Rational Asset analyzer. Rational Asset analyzer has addressed the applicable CVE. ...read more


Security Bulletin: Asset Analyzer (RAA) is affected by a WebSphere Application Server vulnerability

Jul 1, 2020 8:01 pm EDT | Medium Severity

Rational Asset Analyzer (RAA) has addressed the following vulnerability in WebSphere Application Server. ...read more


Security Bulletin: Asset Analyzer (RAA) is affected by a WebSphere Application Server vulnerability

Jul 1, 2020 8:00 pm EDT | Medium Severity

Rational Asset Analyzer (RAA) has addressed the following vulnerability in WebSphere Application Server. ...read more