Vulnerability Bulletins

IBM Security Bulletin: Multiple vulnerabilities in current IBM SDK for Java for WebSphere Application Server April 2014 CPU

System information
   
Affected software IBM

Description
Multiple security vulnerabilities exist in the IBM SDK for Java that is shipped with IBM WebSphere Application Server CVE(s): CVE-2014-0878, CVE-2014-0460, CVE-2014-0453, CVE-2014-0457, CVE-2014-2421, CVE-2014-0429, CVE-2014-0461, CVE-2014-0455, CVE-2014-2428, CVE-2014-0448, CVE-2014-0454, CVE-2014-0446, CVE-2014-0452, CVE-2014-0451, CVE-2014-2402, CVE-2014-2423, CVE-2014-2427, CVE-2014-0458, CVE-2014-2414, CVE-2014-2412, CVE-2014-2409, CVE-2013-6954, CVE-2013-6629, CVE-2014-2401,

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_current_ibm_sdk_for_java_for_websphere_application_server_april_2014_cpu?lang=en_us

Standar resources
Property Value
CVE CVE-2014-0878 ,CVE-2014-0460 ,CVE-2014-0453 ,CVE-2014-0457 ,CVE-2014-2421 ,CVE-2014-0429 ,CVE-2014-0461 ,CVE-2014-0455 ,CVE-2014-2428 ,CVE-2014-0448 ,CVE-2014-0454 ,CVE-2014-0446 ,CVE-2014-0452 ,CVE-2014-0451 ,CVE-2014-2402 ,CVE-2014-2423 ,CVE-2014-2427 ,CVE-2014-0458 ,CVE-2014-2414 ,CVE-2014-2412 ,CVE-2014-2409 ,CVE-2013-6954 ,CVE-2013-6629 ,CVE-2014-2401 ,CVE-2014-0449 ,CVE-2014-0459 ,CVE-2014-2398 ,CVE-2014-1876 ,CVE-2014-2420 ,CVE-2014-0963 ,CVE-2014-0411 and CVE-2014-0050.

Version history
Version Comments Date
1.0 Advisory issued 2014-05-24
Ministerio de Defensa
CNI
CCN
CCN-CERT