IBM Support

Security Bulletin: A security vulnerability has been identified in WebSphere Application Server that ships with Rational Asset Manager (CVE-2017-1151, CVE-2017-1137, CVE-2017-1194)

Created by Igets Administrator on
Published URL:
https://www.ibm.com/support/pages/node/560521
560521

Security Bulletin


Summary

WebSphere Application Server is shipped as a component of Rational Asset Manager. Information about security vulnerability affecting the WebSphere Application Server is published in this security bulletin.

Affected Products and Versions


IBM Rational Asset Manager 7.5, 7.5.1, 7.5.2, and 7.5.3.

Remediation/Fixes

You must refer to the appropriate security bulletin for fix pack releases or an iFix listed in the following table and apply it.

RAMEmbedded WAS?WAS 7.0WAS 8.0WAS 8.5
7.5
    Yes
See the Security Bulletin - CVE-2017-1194 for fix.
    N/A
    N/A
7.5.1See the Security Bulletin - CVE-2017-1151, Security Bulletin CVE-2017-1137 and Security Bulletin - CVE-2017-1194 for fix.
7.5.2
    No
    N/A
See the Security Bulletin - CVE-2017-1151, Security Bulletin CVE-2017-1137 and Security Bulletin - CVE-2017-1194 for fix.
7.5.3

Workarounds and Mitigations

None.

Get Notified about Future Security Bulletins

References

Off

Acknowledgement

None

Change History

* 16 May 2017: Original copy published

*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

Disclaimer

Review the IBM security bulletin disclaimer and definitions regarding your responsibilities for assessing potential impact of security vulnerabilities to your environment.

Internal Use Only

PSIRT Advisory 7898, Record 92551, PSIRT Advisory 7797, Record 94632, PSIRT Advisory 8049, Record 94377

[{"Product":{"code":"SSUS84","label":"Rational Asset Manager"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"General Information","Platform":[{"code":"PF002","label":"AIX"}],"Version":"7.5;7.5.1;7.5.2;7.5.3","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
17 June 2018

UID

swg22003258