Boletines de Vulnerabilidades

IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Emptoris Strategic Supply Management, and IBM Emptoris Services Procurement.

Información sobre el sistema
   
Software afectado IBM

Descripción
The IBM Emptoris Strategic Supply Management Suite and IBM Emptoris Services Procurement products are affected by multiple security vulnerabilities that exist in IBM SDK Java Technology Edition that is shipped with IBM WebSphere Application Server. The security bulletin includes issues disclosed as part of the IBM Java SDK updates in July 2015. CVE(s): CVE-2015-4749, CVE-2015-2625 and CVE-2015-1931 Affected product(s) and affected version(s): IBM Emptoris Contract Management 9.5

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_in_ibm_java_sdk_affect_ibm_emptoris_strategic_supply_management_and_ibm_emptoris_services_procurement1?lang=en_us

Identificadores estándar
Propiedad Valor
CVE CVE-2015-1788 ,CVE-2015-1789 ,CVE-2015-1791 ,CVE-2015-7395 ,CVE-2013-5123 ,CVE-2014-8991 ,CVE-2015-4749 ,CVE-2015-2625 and CVE-2015-1931.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2015-11-07

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT