Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: WebSphere DataPower XC10 Appliance security vulnerabilities for web UI access and in a Java security component |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
Data confidentiality and integrity may be threatened by several security vulnerabilities in WebSphere DataPower XC10 Appliance versions 2.1 and 2.5. For CVE-2014-6163, CVE-2014-6143, CVE-2014-6138, and CVE-2014-3058, the vulnerabilities have to do with the administrative user interface and procedures in the appliance. For CVE-2014-4244 and CVE-2014-4263, the vulnerabilities are in the IBM SDK Java Technology Edition that is shipped in the appliance. These issues were disclosed as part of the More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_websphere_datapower_xc10_appliance_security_vulnerabilities_for_web_ui_access_and_in_a_java_security_component?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-6163 ,CVE-2014-6143 ,CVE-2014-6138 ,CVE-2014-3058 ,CVE-2014-4244 ,CVE-2014-4263 ,CVE-2014-0139 ,CVE-2014-3566 ,CVE-2014-6457 and CVE-2014-6468. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-12-18 |