Boletines de Vulnerabilidades

IBM Security Bulletin: IBM Cognos Business Intelligence Server 2015Q4 Security Updater : IBM Cognos Business Intelligence Server is affected by multiple vulnerabilities.

Información sobre el sistema
   
Software afectado IBM

Descripción
There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 6 and IBM® Runtime Environment Java™ Technology Edition, Version 7 that are used by IBM Cognos Business Intelligence. These issues were disclosed as part of the IBM Java SDK updates in October 2015. An Apache Commons Collections vulnerability for handling Java object deserialization was addressed by IBM Cognos Business Intelligence. Add/remove users to/from an external

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_ibm_cognos_business_intelligence_server_2015q4_security_updater_ibm_cognos_business_intelligence_server_is_affected_by_multiple_vulnerabilities_cve_2015_7436_cve_2015_7435_cv

Identificadores estándar
Propiedad Valor
CVE

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2015-12-03

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT