Lucene search

K
ibmIBM151664D44B7940A78C0F29EC88272FD346BD06DCBAFEA5C9CAD32616E0EB8352
HistoryOct 14, 2020 - 3:50 a.m.

Security Bulletin: Multiple vulnerabilities in IBM® JDK, Java™ Technology Edition may affect IBM Cloud Manager with OpenStack

2020-10-1403:50:30
www.ibm.com
10
ibm cloud manager
java technology edition
vulnerabilities
openstack
security bulletin

EPSS

0.001

Percentile

34.4%

Summary

A vulnerability in IBM® JDK Java™ Technology Edition, Version 7.0.10.50 used by IBM Cloud Manager with OpenStack. The CVE-2020-2590 and CVE-2020-2601 were disclosed as part of the Oracle January 2020 Critical Patch Update.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section

Affected Products and Versions

Affected Product(s) Version(s)
IBM Cloud Manager 4.3

Remediation/Fixes

The recommended solution is to manually apply the fix on IBM Cloud Manager with OpenStack.

Consult the following security bulletins for the vulnerability details and information about their fixes:

Security Bulletin: CVE-2020-2590 may affect IBM® SDK, Java™ Technology Edition

Security Bulletin: CVE-2020-2601 may affect IBM® SDK, Java™ Technology Edition

Workarounds and Mitigations

None