A vulnerability in IBM® JDK Java™ Technology Edition, Version 7.0.10.50 used by IBM Cloud Manager with OpenStack. The CVE-2020-2590 and CVE-2020-2601 were disclosed as part of the Oracle January 2020 Critical Patch Update.
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Product(s) | Version(s) |
---|---|
IBM Cloud Manager | 4.3 |
The recommended solution is to manually apply the fix on IBM Cloud Manager with OpenStack.
Consult the following security bulletins for the vulnerability details and information about their fixes:
Security Bulletin: CVE-2020-2590 may affect IBM® SDK, Java™ Technology Edition
Security Bulletin: CVE-2020-2601 may affect IBM® SDK, Java™ Technology Edition
None