Lucene search

K
ibmIBM161108AA134D79208CDC97DC8C1767C247F27AFB996662C016C5FFA947B51754
HistoryJan 05, 2021 - 6:17 a.m.

Security Bulletin: Enterprise Content Management System Monitor is affected by a vulnerability in IBM® SDK Java™ Technology Edition

2021-01-0506:17:38
www.ibm.com
22
ibm sdk java technology edition
vulnerability
enterprise content management system monitor
version 5.5.5

EPSS

0.001

Percentile

28.5%

Summary

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8 used by Enterprise Content Management System Monitor. Enterprise Content Management System Monitor has addressed the applicable CVEs.

Vulnerability Details

CVEID:CVE-2020-2590
**DESCRIPTION:**An unspecified vulnerability in Java SE related to the Java SE Security component could allow an unauthenticated attacker to cause no confidentiality impact, low integrity impact, and no availability impact.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/174538 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
Enterprise Content Management System Monitor 5.5.5

Remediation/Fixes

Enterprise Content Management System Monitor5.5.5.0-002 in Fix central: ECM_SM-5.5.5.0-002

Enterprise Content Management System Monitor 5.5.5 in Passport Advantage

Workarounds and Mitigations

None