IBM144C23662992641D90EB9C4F112C9AEC35AB69E760D70E39C29768CFAD97B56FSecurity Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM QuickFile (CVE-2015-4872)
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
Summary
There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 that is used by IBM QuickFile. These issues were disclosed as part of the IBM Java SDK updates for October 2015.
Vulnerability Details
CVEID: CVE-2015-4872** **
DESCRIPTION: An unspecified vulnerability related to the Security component has no confidentiality impact, partial integrity impact, and no availability impact.
CVSS Base Score: 5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/107361 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:P/A:N)
Affected Products and Versions
IBM QuickFile 1.1.0.1
Remediation/Fixes
Contact Support and request the fix package to be published for you on the ECuRep server.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm quickfile | eq | 1.1.0.1 | |
| ibm quickfile | eq | 1.1 |
Related
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N