IBM Security Bulletin: Jazz for Service Management is affected by Open Source Apache ActiveMQ vulnerability - Reported in 02/05/2015 X-Force Report
|
System information
|
| |
|
|
Affected software |
IBM |
Description
|
Jazz for Service Management (JazzSM) bundles the Open Source Apache ActiveMQ jar files for use by the underlying DASH/TWL Component and a vulnerability was reported related to the jar used CVE(s): CVE-2014-3600 Affected product(s) and affected version(s): Jazz for Service Management v1.1.0.3 Jazz for Service Management v1.1.1.0 Jazz for Service Management v1.1.2.0 has the vulnerability fixed version of the jar file Refer to the following reference URLs for remediation and
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_jazz_for_service_management_is_affected_by_open_source_apache_activemq_vulnerability_reported_in_02_05_2015_x_force_report?lang=en_us |
Standar resources
|
|
Property |
Value |
|
CVE |
CVE-2014-3600 ,CVE-2015-1788 ,CVE-2015-4000 ,CVE-2015-2808 ,CVE-2015-1916 ,CVE-2015-0204 and CVE-2015-0138. |
