Lucene search

IBM4AF16DC86D8AE595645DF6F430B418E97935E0E08D118806B6C04B04D38B81EB

HistoryMar 14, 2024 - 7:16 p.m.

Security Bulletin: Multiple security vulnerabilities in IBM SDK, Java Technology Edition affects IBM OpenPages

2024-03-1419:16:24

www.ibm.com

ibm openpages

sdk

java technology

security bulletin

vulnerabilities

fixes

upgrade

ibm

openpages with watson

grc platform

cve

instructions

application server

search server

reporting server

ibm java security bulletins

AI Score

Confidence

Low

JSON

Summary

IBM® SDK, Java™ Technology Edition is shipped as a supporting program of IBM OpenPages. Information about a security vulnerability affecting IBM SDK, Java Technology Edition has been published in multiple security bulletins. These products have addressed the applicable CVE(s). For a complete list of vulnerabilities, refer to the link for IBM Java SDK Security Bulletins located in the Remediation/Fixes section for more information.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section

Affected Products and Versions

Affected Product(s)	Version(s)
IBM OpenPages with Watson	9.0
IBM OpenPages with Watson	IBM OpenPages with Watson 8.3

Remediation/Fixes

Fixes have been created for each affected version of the named product. Download and install the fix as soon as possible. Fixes and installation instructions are provided at the URLs listed below:

For IBM OpenPages with Watson, IBM recommends upgrading to Upgrade to IBM SDK, Java Technology Edition Version 8.0.8.20

To Download IBM SDK, Java Technology Edition Version 8.0.8.20 refer to IBM Java SDKs for Liberty for Archive or Installation Manager Installs (Fix Central)

Product

| Instructions
—|—

For IBM OpenPages with Watson **8.3 or 9.0 **

Follow the appropriate steps to upgrade Java on each OpenPages server type.

Application Server
- Upgrade to IBM SDK, Java Technology Edition Version 8.0.8.20 refer to instructions How to Update Java on an OpenPages Application Server
Search Server
- Upgrade to IBM SDK, Java Technology Edition Version 8.0.8.20 refer to instructions How to Update Java on an OpenPages Global Search Server
Reporting Server
- Upgrade to IBM SDK, Java Technology Edition Version 8.0.8.20 refer to instructions How to Update Java on an OpenPages Reporting Server

For IBM OpenPages GRC Platform v8.0/8.1/8.2 customers, IBM recommends to upgrade to a fixed and supported versions** 8.3 or 9.0** of the product.

For CVE numbers fixed in IBM SDK, Java Technology Edition related to IBM OpenPages, see the following IBM Java security bulletins:

<https://www.ibm.com/support/pages/node/7116432>

Workarounds and Mitigations

None

Affected configurations

Vulners

Node

ibmopenpages_with_watsonMatch8.3

ibmopenpages_with_watsonMatch9.0

VendorProductVersionCPE
ibmopenpages_with_watson8.3cpe:2.3:a:ibm:openpages_with_watson:8.3:*:*:*:*:*:*:*
ibmopenpages_with_watson9.0cpe:2.3:a:ibm:openpages_with_watson:9.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	openpages_with_watson	8.3	cpe:2.3:a:ibm:openpages_with_watson:8.3:::::::*
ibm	openpages_with_watson	9.0	cpe:2.3:a:ibm:openpages_with_watson:9.0:::::::*

AI Score

Confidence

Low

JSON