There is a vulnerability in IBM® Runtime Environment Java™ Technology Edition, Version 7 and 8 that is used by IBM Control Center. The issue was disclosed as part of the IBM Java SDK update in October 2019.
CVEID:CVE-2019-2989
**DESCRIPTION:**An unspecified vulnerability in Java SE could allow an unauthenticated attacker to cause no confidentiality impact, high integrity impact, and no availability impact.
CVSS Base score: 6.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/169295 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N)
Affected Product(s)
|
Version(s)
—|—
IBM Control Center
|
6.0.0.0 through 6.0.0.2 iFix08
IBM Control Center
|
6.1.0.0 through 6.1.2.1 iFix01
Product
|
VRMF
|
iFix
|
Remediation
—|—|—|—
IBM Control Center
|
6.0.0.2
|
iFix09
|
IBM Control Center
|
6.1.2.1
|
iFix02
|
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm control center | eq | 6.0 | |
ibm control center | eq | 6.1 |