Boletines de Vulnerabilidades

Security Bulletin: Vulnerabilities in curl affect IBM Flex System Manager (FSM): (CVE-2013-2174 CVE-2013-4545 CVE-2014-0015 CVE-2014-0138 CVE-2014-013)

Información sobre el sistema
   
Software afectado IBM

Descripción
Security vulnerabilities have been discovered in curl that is included in IBM FSM. CVE(s): CVE-2013-2174, CVE-2013-4545, CVE-2014-0015, CVE-2014-0138, CVE-2014-013) and CVE-2014-0139 Affected product(s) and affected version(s): Flex System Manager 1.1.x.x Flex System Manager 1.2.0.x Flex System Manager 1.2.1.x Flex System Manager 1.3.0.x Flex System Manager 1.3.1.x Flex System Manager 1.3.2.x Refer to the following reference URLs for remediation and additional vulnerability details:

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_vulnerabilities_in_curl_affect_ibm_flex_system_manager_fsm_cve_2013_2174_cve_2013_4545_cve_2014_0015_cve_2014_0138_cve_2014_013?lang=en_us

Identificadores estándar
Propiedad Valor
CVE CVE-2013-2174 ,CVE-2013-4545 ,CVE-2014-0015 ,CVE-2014-0138 ,CVE-2014-0139 ,CVE-2013-4248 ,CVE-2013-6420 ,CVE-2014-2497 ,CVE-2014-4049 ,CVE-2014-2653 and CVE-2014-3566.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2014-11-07

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT