Boletines de Vulnerabilidades

Security Bulletin: Vulnerabilities in php5 affect IBM Flex System Manager (FSM): (CVE-2013-4248 CVE-2013-6420 CVE-2014-2497 CVE-2014-4049)

Información sobre el sistema
   
Software afectado IBM

Descripción
Security vulnerabilities have been discovered in php5 that is included in IBM FSM. CVE(s): CVE-2013-4248, CVE-2013-6420, CVE-2014-2497 and CVE-2014-4049 Affected product(s) and affected version(s): Flex System Manager 1.1.x.x Flex System Manager 1.2.0.x Flex System Manager 1.2.1.x Flex System Manager 1.3.0.x Flex System Manager 1.3.1.x Flex System Manager 1.3.2.x Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin:

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_vulnerabilities_in_php5_affect_ibm_flex_system_manager_fsm_cve_2013_4248_cve_2013_6420_cve_2014_2497_cve_2014_4049?lang=en_us

Identificadores estándar
Propiedad Valor
CVE CVE-2013-4248 ,CVE-2013-6420 ,CVE-2014-2497 ,CVE-2014-4049 ,CVE-2014-2653 ,CVE-2014-0076 ,CVE-2014-0224 ,CVE-2014-0221 ,CVE-2014-0195 ,CVE-2014-0198 ,CVE-2010-5298 and CVE-2014-3470.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2014-11-07

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT