Boletines de Vulnerabilidades

IBM Security Bulletin: Two java security vulnerabilities in IBM Security Access Manager for Mobile and IBM Security Access Manager for Web (CVE-2014-0878, CVE-2014-0453)

Información sobre el sistema
   
Software afectado IBM

Descripción
IBM Security Access Manager for Mobile / IBM Security Access Manager for Web is affected by two vulnerabilities in the Java code used to build the appliance. These vulnerabilities also affect versions of IBM WebSphere and IBM Java SDK that are bundled with certain versions of IBM Security Access Manager for Web. CVE(s): CVE-2014-0878 and CVE-2014-0453 Affected product(s) and affected version(s): IBM Security Access Manager for Mobile version 8.0 - all firmware versions IBM Security

More info:

https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_two_java_security_vulnerabilities_in_ibm_security_access_manager_for_mobile_and_ibm_security_access_manager_for_web_cve_2014_0878_cve_2014_0453?lang=en_us

Identificadores estándar
Propiedad Valor
CVE CVE-2014-0878 ,CVE-2014-0453 ,CVE-2014-3053 ,CVE-2014-2414 ,CVE-2014-0411 and CVE-2014-0050.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2014-06-21

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT