Lucene search

IBM5E09374F40B97F0189CAFDE91D8E1470F388A35D810B06708FD4EFC5DF5A1CA3

HistoryJun 15, 2018 - 10:42 p.m.

Security Bulletin: An unspecified vulnerability related to the Security component in IBM Java Runtime affects IBM Cognos Planning (CVE-2015-4872)

2018-06-1522:42:46

www.ibm.com

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

JSON

Summary

There is a vulnerability in IBM® Runtime Environment Java™ Technology Edition, Version 6 SR16 FP7 that is used by IBM Cognos Planning. This issue was disclosed as part of the IBM Java SDK updates for October 2015

Vulnerability Details

CVEID: CVE-2015-4872** **
DESCRIPTION: An unspecified vulnerability related to the Security component has no confidentiality impact, partial integrity impact, and no availability impact.
CVSS Base Score: 5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/107361 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:P/A:N)

Affected Products and Versions

IBM Cognos Planning 10.1

IBM Cognos Planning 10.1.1

Remediation/Fixes

Apply fixes, download available at:

Cognos Planning 10.1.1 Fix Pack 7:

http://www-01.ibm.com/support/docview.wss?uid=swg24041772

Cognos Planning 10.1 Interim Fix 7:
http://www-01.ibm.com/support/docview.wss?uid=swg24041943

CPENameOperatorVersion
cognos planningeq10.1.1

CPE	Name	Operator	Version
	cognos planning	eq	10.1.1

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

JSON

Related for 5E09374F40B97F0189CAFDE91D8E1470F388A35D810B06708FD4EFC5DF5A1CA3