Vulnerability Bulletins

IBM Security Bulletin: IBM Tivoli Composite Application Manager for Transactions affected by multiple vulnerabilities in IBM JRE (Multiple CVEs)

System information
   
Affected software IBM

Description
There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 6.0, 7.0 that is used by IBM Tivoli Composite Application Manager for Transactions. This bulletin addresses the “FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability. CVE(s): CVE-2015-0138 Affected product(s) and affected version(s): IBM Tivoli Composite Application Manager (ITCAM) for Transactions is affected. ITCAM for Transactions

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_ibm_tivoli_composite_application_manager_for_transactions_affected_by_multiple_vulnerabilities_in_ibm_jre_multiple_cves5?lang=en_us

Standar resources
Property Value
CVE CVE-2015-0138.

Version history
Version Comments Date
1.0 Advisory issued 2015-04-16
Ministerio de Defensa
CNI
CCN
CCN-CERT