Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: ClassLoader manipulation with Apache Struts affecting Tivoli Provisioning Manager (CVE-2014-0114) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
There is a ClassLoader manipulation vulnerability in Apache Struts that is used by Tivoli Provisioning Manager. Moreover, the same vulnerability has been identified in WebSphere Application Server shipped with Tivoli Provisioning Manager. CVE(s): CVE-2014-0114 Affected product(s) and affected version(s): Tivoli Provisioning Manager 5.1 Tivoli Provisioning Manager 7.1 - 7.2 Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin: More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_classloader_manipulation_with_apache_struts_affecting_tivoli_provisioning_manager_cve_2014_0114?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-0114 ,CVE-2014-0050 ,CVE-2014-0224 ,CVE-2014-0221 ,CVE-2014-0195 ,CVE-2014-0198 ,CVE-2010-5298 and CVE-2014-3470. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-07-09 |