Boletines de Vulnerabilidades

IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Security Policy Manager (CVE-2015-2613, CVE-2015-2601, CVE-2015-2625, and CVE-2015-1931)

Información sobre el sistema
   
Software afectado IBM

Descripción
IBM Tivoli Security Policy Manager (TSPM) runs as a WebSphere application. Multiple security vulnerabilities have been discovered in IBM SDK for Java that is shipped with IBM WebSphere Application Server (WAS). Tivoli Security Policy Manager customers should upgrade the SDK used by TSPM to patch the Java vulnerabilities identified in this security bulletin. CVE(s): CVE-2015-2613, CVE-2015-2601, CVE-2015-2625 and CVE-2015-1931 Affected product(s) and affected version(s): IBM Tivoli

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_ibm_java_sdk_affect_ibm_tivoli_security_policy_manager_cve_2015_2613_cve_2015_2601_cve_2015_2625_and_cve_2015_1931?lang=en_us

Identificadores estándar
Propiedad Valor
CVE CVE-2015-2613 ,CVE-2015-2601 ,CVE-2015-2625 ,CVE-2015-1931 ,CVE-2015-4949 ,CVE-2015-4950 and CVE-2015-4000.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2015-08-12

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT