7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Tivoli Integrated Portal is shipped as a component of Tivoli FastBack for Workstations Central Administration Console. Information about a security vulnerability affecting Tivoli Integrated Portal has been published in a security bulletin.
Please consult the security bulletin Security Bulletin: ClassLoader manipulation with Apache Struts affecting Tivoli Integrated Portal (CVE-2014-0114) for vulnerability details.
Principal Product and Version(s) | Affected Supporting Product and Version |
---|---|
Tivoli FastBack for Workstations 6.1.0, Central Administration Console component | Apply the 6.1.2.0 fix pack (or optionally upgrade to 6.3.x or 7.1.x level or higher) then apply the specific Tivoli Integrated Portal patch |
Tivoli FastBack for Workstations 6.1.2, Central Administration Console component | Tivoli Integrated Portal 2.1 |
Tivoli FastBack for Workstations 6.1.3, Central Administration Console component | Tivoli Integrated Portal 2.1.0.5 |
Tivoli FastBack for Workstations 6.3.0, Central Administration Console component | Tivoli Integrated Portal 2.1.0.5 |
Tivoli FastBack for Workstations 6.3.1, Central Administration Console component | Tivoli Integrated Portal 2.2.0.9 |
Tivoli FastBack for Workstations 7.1.0, Central Administration Console component | Tivoli Integrated Portal 2.2.0.11 |
Please consult the security bulletin Security Bulletin: ClassLoader manipulation with Apache Struts affecting Tivoli Integrated Portal (CVE-2014-0114) for remediation details.
CPE | Name | Operator | Version |
---|---|---|---|
tivoli storage manager fastback for workstations | eq | 6.3 | |
tivoli storage manager fastback for workstations | eq | 7.1 |