IBM Support

Security Bulletin: A security vulnerability has been identified in multiple products that ship with IBM Predictive Customer Intelligence (CVE-2014-3566)

Created by Leslie Harrison on
Published URL:
https://www.ibm.com/support/pages/node/259119
259119

Security Bulletin


Summary

IBM Cognos Business Intelligence, IBM Infosphere Integration Bus, IBM WebSphere MQ, IBM DB2 Enterprise Server, IBM HTTP Server and IBM SPSS Modeler are shipped as components of IBM Predictive Customer Intelligence. Information about security vulnerabilities affecting IBM Cognos Business Intelligence, IBM Infosphere Integration Bus, IBM WebSphere MQ, IBM DB2 Enterprise Server, IBM HTTP Server and IBM SPSS Modeler has been published in the following security bulletins.

Vulnerability Details

Please consult the security bulletin Security Bulletin: IBM Cognos Business Intelligence Server is affected by multiple vulnerabilities (CVE-2014-3566, CVE-2014-6145, CVE-2014-1568, CVE-2014-4263, CVE-2012-5784, CVE-2014-3513, CVE-2014-3567 and CVE-2014-3568) for vulnerability details and information about fixes.

Please consult the security bulletin Security Bulletin: TLS padding vulnerability affects IBM® DB2® LUW (CVE-2014-8730) for vulnerability details and information about fixes.



Please consult the security bulletin Security Bulletin: Vulnerability in SSLv3 affects IBM SPSS Modeler (CVE-2014-3566) for vulnerability details and information about fixes.

Please consult the security bulletin Security Bulletin: TLS padding vulnerability affects IBM HTTP Server (CVE-2014-8730) for vulnerability details and information about fixes.

Please consult the security bulletin Security Bulletin : IBM WebSphere Message Broker and IBM Integration Bus are affected by SSLv3 Vulnerability (CVE-2014-3566 and CVE-ID: CVE-2014-3568) for vulnerability details and information about fixes.

Affected Products and Versions

Principal Product and Version(s)

Affected Supporting Product and Version
IBM Predictive Customer Intelligence 1.0IBM Infosphere Integration Bus 9.0.0.1;
IBM WebSphere MQ v 7.5.0.2;
IBM DB2 Enterprise Server Edition V10.1.0.3;
IBM SPSS Modeler Server Premium 16;
IBM Cognos Business Intelligence 10.2.1;
IBM Predictive Customer Intelligence 1.0.1IBM Infosphere Integration Bus 9.0.0.1;
IBM WebSphere MQ v 7.5.0.2;
IBM DB2 Enterprise Server Edition V10.1.0.3;
IBM SPSS Modeler Server Premium 16;
IBM Cognos Business Intelligence 10.2.1;

Get Notified about Future Security Bulletins

References

Off

Change History

Original Date Published: 08/04/2015

*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

Disclaimer

Review the IBM security bulletin disclaimer and definitions regarding your responsibilities for assessing potential impact of security vulnerabilities to your environment.

[{"Product":{"code":"SSCJHT","label":"Predictive Customer Intelligence"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"--","Platform":[{"code":"PF016","label":"Linux"},{"code":"PF033","label":"Windows"}],"Version":"1.0;1.0.1","Edition":"","Line of Business":{"code":"LOB31","label":"WCE Watson Marketing and Commerce"}}]

Document Information

Modified date:
11 February 2020

UID

swg21700354