Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Multiple vulnerabilities exist in the SOAP Gateway component of IMS Enterprise Suite (CVE-2013-4002, CVE-2013-5825, CVE-2013-5372, CVE-2014-0416, CVE-2014-0411) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
The SOAP Gateway component of IMS™ Enterprise Suite versions 2.1, 2.2, and 3.1 is affected by multiple vulnerabilities in IBM® SDK, Java™ Technology Edition and could allow processing XML from untrusted sources, constructing invalid security subject instance, and TLS man-in-the-middle-attacks. CVE(s): CVE-2013-4002, CVE-2013-5825, CVE-2013-5372, CVE-2014-0416 and CVE-2014-0411 Affected product(s) and affected version(s): The SOAP Gateway component of the IMS Enterprise Suite More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_exist_in_the_soap_gateway_component_of_ims_enterprise_suite_cve_2013_4002_cve_2013_5825_cve_2013_5372_cve_2014_0416_cve_2014_0411?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2013-4002 ,CVE-2013-5825 ,CVE-2013-5372 ,CVE-2014-0416 ,CVE-2014-0411 ,CVE-2013-5907 ,CVE-2014-0417 ,CVE-2014-0838 ,CVE-2014-0835 ,CVE-2014-0836 ,CVE-2014-0837 ,CVE-2013-4353 ,CVE-2013-6450 and CVE-2013-6449. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-03-11 |