Medium Severity

Security Bulletin: Vulnerability in Apache Ant affects IBM Spectrum Symphony

Share this post:

These interim fixes provide instructions on upgrading Apache Ant to 1.10.9 in IBM Spectrum Symphony, IBM Spectrum Symphony 7.2.1, IBM Spectrum Symphony 7.3, and IBM Spectrum Symphony 7.3.1 in order to address security vulnerability CVE-2020-11979 in Apache Ant.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Spectrum Symphony
IBM Spectrum Symphony 7.2.1
IBM Spectrum Symphony 7.3
IBM Spectrum Symphony 7.3.1

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin:

More stories

Security Bulletin: IBM FileNet Content Manager GraphQL Cross-site request forgery security vulnerability

Feb 24, 2021 7:00 pm EST | Medium Severity

IBM FileNet Content Manager in GraphQL, there is a Cross-site request forgery security vulnerability. more

Security Bulletin: Clickjacking vulnerability identified in IBM Dependency Based Build server web UI

Feb 23, 2021 7:01 pm EST | Medium Severity

A clickjacking vulnerability has been identified in the IBM Dependency Based Build server web UI. more

Security Bulletin: Vulnerabilities in Node.js affect IBM Integration Bus (CVE-2020-7760)

Feb 23, 2021 7:00 pm EST | Medium Severity

IBM Integration Bus ships with Node.js for which vulnerabilities were reported and have been addressed. Vulnerability details are listed below. more