IBM Security Bulletin: Multiple vulnerabilities exist in the SOAP Gateway component of IMS Enterprise Suite (CVE-2013-4002, CVE-2013-5825, CVE-2013-5372, CVE-2014-0416, CVE-2014-0411)
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
The SOAP Gateway component of IMS™ Enterprise Suite versions 2.1, 2.2, and 3.1 is affected by multiple vulnerabilities in IBM® SDK, Java™ Technology Edition and could allow processing XML from untrusted sources, constructing invalid security subject instance, and TLS man-in-the-middle-attacks. CVE(s): CVE-2013-4002, CVE-2013-5825, CVE-2013-5372, CVE-2014-0416 and CVE-2014-0411 Affected product(s) and affected version(s): The SOAP Gateway component of the IMS Enterprise Suite
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_vulnerabilities_exist_in_the_soap_gateway_component_of_ims_enterprise_suite_cve_2013_4002_cve_2013_5825_cve_2013_5372_cve_2014_0416_cve_2014_0411?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2013-4002 ,CVE-2013-5825 ,CVE-2013-5372 ,CVE-2014-0416 ,CVE-2014-0411 ,CVE-2013-5907 ,CVE-2014-0417 ,CVE-2014-0838 ,CVE-2014-0835 ,CVE-2014-0836 ,CVE-2014-0837 ,CVE-2013-4353 ,CVE-2013-6450 and CVE-2013-6449. |