Vulnerability Bulletins

IBM Security bulletin: Multiple vulnerabilities in IBM API Management V2.0

System information
   
Affected software IBM

Description
Multiple security vulnerabilities exist in the IBM SDK for Java that is shipped with IBM API Management V2.0 CVE(s): CVE-2014-0423, CVE-2014-0416 and CVE-2014-0411 Affected product(s) and affected version(s): IBM API Management V2.0.0.0 and all subsequent fixPacks Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg21666885 X-Force Database: http://xforce.iss.net/xforce/xfdb/90340

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_ibm_api_management_v2_0?lang=en_us

Standar resources
Property Value
CVE CVE-2014-0423 ,CVE-2014-0416 ,CVE-2014-0411 ,CVE-2013-4353 ,CVE-2013-6450 and CVE-2013-6449.

Version history
Version Comments Date
1.0 Advisory issued 2014-03-20
Ministerio de Defensa
CNI
CCN
CCN-CERT