IBM Security Bulletin: IBM Cognos Business Intelligence Server is affected by multiple vulnerabilities
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
There are multiple vulnerabilities in IBM SDK Java Technology Edition, Version 6 and IBM SDK Java Technology Edition, Version 7 that are used by IBM Cognos Business Intelligence. These issues were disclosed as part of the IBM Java SDK updates in October 2014 and January 2015. OpenSSL vulnerabilities were disclosed on January 8, 2015 by the OpenSSL Project. This includes “FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability. OpenSSL is used by IBM Cognos
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_ibm_cognos_business_intelligence_server_is_affected_by_multiple_vulnerabilities?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2014-4341 ,CVE-2014-4342 ,CVE-2014-4343 ,CVE-2014-5352 ,CVE-2014-9421 ,CVE-2014-9422 ,CVE-2014-9423 ,CVE-2015-0235 ,CVE-2015-0286 ,CVE-2015-0287 ,CVE-2015-0289 ,CVE-2014-9495 ,CVE-2015-0973 ,CVE-2014-3566 ,CVE-2014-6457 ,CVE-2014-6593 ,CVE-2015-0410 ,CVE-2014-3021 ,CVE-2014-3569 ,CVE-2015-0204 ,CVE-2014-3570 ,CVE-2014-3571 ,CVE-2014-3572 ,CVE-2014-8275 ,CVE-2015-0205 and CVE-2015-0206. |