Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM1BF3F83E9C70EE854C61B8530F6C49C87B34D98B653CF9884D471690F1C364D6
HistoryJun 17, 2018 - 4:55 a.m.

Security Bulletin:Security vulnerability has been identified in Rational Application Developer shipped with Rational Software Architect for Websphere (CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470)

2018-06-1704:55:14
www.ibm.com
18

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

JSON

Summary

IBM Rational Application Developer for WebSphere Software (RAD) is shipped as a component of Rational Software Architect. Information about a security vulnerability affecting RAD has been published in a security bulletin.

Vulnerability Details

| Subscribe to My Notifications to be notified of important product support alerts like this.

  • Follow this link for more information (requires login with your IBM ID)
    —|—

Review security bulletin Rational Application Developer is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 for vulnerability details.

Affected Products and Versions

Rational Software Architect for WebSphere 9.1
Rational Software Architect 9.1

Remediation/Fixes

Review the Remediation/Fixes section in security bulletin Rational Application Developer is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470 for instructions on obtaining the fixes for these issues.

Workarounds and Mitigations

None

Related

nessus 87
ibm 33
oraclelinux 2
openvas 36
citrix 1
redhat 3
slackware 1
gentoo 1
vmware 2
thn 1
centos 1
aix 1
securityvulns 2
suse 6
huawei 1
intel 1
amazon 1
cisco 1
fortinet 1
kaspersky 1
ics 1
debian 4
ubuntu 4
mageia 1
freebsd 1
freebsd_advisory 1
osv 2
fedora 2
nessus
nessus
VMware Horizon View Client < 3.0.0 Multiple SSL Vulnerabilities (VMSA-2014-0006) (Mac OS X)
2014-08-01 00:00:00
VMware vCenter Converter Multiple Vulnerabilities (VMSA-2014-0006)
2014-07-31 00:00:00
WinSCP 5.x < 5.5.4 Multiple Vulnerabilities
2014-06-20 00:00:00
ibm
ibm
Security Bulletin: IBM Flex System FC5022 16Gb SAN Scalable Switch, FC5022 24-port 16Gb ESB SAN Scalable Switch, FC5022 24-port 16Gb SAN Scalable Switch (and Two 16Gb FC SFPs) Firmware is affected by the following OpenSSL vulnerabilities
2019-01-31 01:25:01
Security Bulletin: Rational Application Developer is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470
2020-02-05 00:09:48
Security Bulletin: NeXtScale Fan Power Controller (FPC) July 2014 Fixes (CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470)
2019-01-31 01:25:01
oraclelinux
oraclelinux
openssl security update
2014-07-23 00:00:00
openssl security update
2014-06-05 00:00:00
openvas
openvas
RedHat Update for openssl RHSA-2014:0625-01
2014-06-09 00:00:00
Slackware: Security Advisory (SSA:2014-156-03)
2022-04-21 00:00:00
CentOS Update for openssl CESA-2014:0625 centos6
2014-06-09 00:00:00
citrix
citrix
Citrix Security Advisory for OpenSSL Vulnerabilities (June 2014)
2014-06-06 04:00:00
redhat
redhat
(RHSA-2014:0625) Important: openssl security update
2014-06-05 00:00:00
(RHSA-2014:0628) Important: openssl security update
2014-06-05 00:00:00
(RHSA-2014:0679) Important: openssl security update
2014-06-10 00:00:00
slackware
slackware
[slackware-security] openssl
2014-06-06 05:27:11
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2014-07-27 00:00:00
vmware
vmware
VMware product updates address OpenSSL security vulnerabilities
2014-06-10 00:00:00
VMware product updates address OpenSSL security vulnerabilities
2014-06-10 00:00:00
thn
thn
OpenSSL Vulnerable to Man-in-the-Middle Attack and Several Other Bugs
2014-06-05 05:49:00
centos
centos
openssl security update
2014-06-05 13:06:47
aix
aix
AIX OpenSSL Vulnerabilities (Multiple CVEs)
2014-06-11 06:39:27
securityvulns
securityvulns
OpenSSL multiple security vulnerabilities
2014-06-06 00:00:00
ESA-2014-079: EMC Documentum Content Server Multiple Vulnerabilities
2014-08-26 00:00:00
suse
suse
Security update for OpenSSL 1.0 (critical)
2014-06-06 09:04:15
openssl: update to version 1.0.1h (critical)
2014-06-06 11:04:41
update to version 1.0.0m (critical)
2014-06-06 12:04:17
huawei
huawei
Security Advisory-Multiple OpenSSL vulnerabilities on Huawei products
2014-06-13 00:00:00
intel
intel
Multiple Security Issues with Intel® Manycore Platform Software Stack (Intel® MPSS) release 3.x
2014-08-26 00:00:00
amazon
amazon
Important: openssl
2014-06-04 15:45:00
cisco
cisco
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products
2014-06-05 22:40:00
fortinet
fortinet
Multiple Vulnerabilities in OpenSSL
2014-06-06 00:00:00
kaspersky
kaspersky
KLA10382 Multiple vulnerabilities in VMware
2014-06-10 00:00:00
ics
ics
Siemens OpenSSL Vulnerabilities (Update G)
2018-08-29 12:00:00
debian
debian
[SECURITY] [DSA 2950-2] openssl update
2014-06-16 18:21:35
[SECURITY] [DSA 2950-1] openssl security update
2014-06-05 11:50:58
openssl security update
2014-06-05 19:36:04
ubuntu
ubuntu
OpenSSL regression
2014-08-18 00:00:00
OpenSSL vulnerabilities
2014-06-05 00:00:00
OpenSSL regression
2014-06-12 00:00:00
mageia
mageia
Updated openssl packages fix multiple vulnerabilties
2014-06-06 14:31:01
freebsd
freebsd
OpenSSL -- multiple vulnerabilities
2014-06-05 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:14.openssl
2014-06-05 00:00:00
osv
osv
openssl - security update
2014-06-05 00:00:00
openssl - security update
2014-06-05 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: openssl-1.0.1e-38.fc19
2014-06-05 21:54:15
[SECURITY] Fedora 20 Update: openssl-1.0.1e-38.fc20
2014-06-05 21:55:11

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

JSON
Related for 1BF3F83E9C70EE854C61B8530F6C49C87B34D98B653CF9884D471690F1C364D6
nessus87ibm33oraclelinux2openvas36citrix1redhat3slackware1gentoo1vmware2thn1centos1aix1securityvulns2suse6huawei1intel1amazon1cisco1fortinet1kaspersky1ics1debian4ubuntu4mageia1freebsd1freebsd_advisory1osv2fedora2