Security Bulletin: Security vulnerabilities have been identified in IBM DB2 shipped with Rational Insight (CVE-2013-6747, CVE-2014-0963)

2018-06-1704:54:38

www.ibm.com

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

JSON

Summary

IBM DB2 is shipped as a component of Rational Insight. Information about security vulnerabilities affecting IBM DB2 has been published in a security bulletin.

Vulnerability Details

| Subscribe to My Notifications to be notified of important product support alerts like this.

Follow this link for more information (requires login with your IBM ID)
—|—

Review Security Bulletin: IBM DB2 is impacted by multiple TLS/SSL security vulnerabilities (CVE-2013-6747, CVE-2014-0963) for the vulnerability details.

Affected Products and Versions

Rational Insight 1.0, 1.0.0.1, 1.0.0.2, 1.0.1, 1.0.1 iFix1, 1.0.1.1, 1.1, 1.1.1, 1.1.1.1, 1.1.1.2 and 1.1.1.3

Remediation/Fixes

Review the Remediation/Fixes section in Security Bulletin: IBM DB2 is impacted by multiple TLS/SSL security vulnerabilities (CVE-2013-6747, CVE-2014-0963) to obtain the proper fix for your version of DB2.

Workarounds and Mitigations

None

CPENameOperatorVersion
rational insighteq1.0
rational insighteq1.0.0.1
rational insighteq1.0.0.2
rational insighteq1.0.1
rational insighteq1.0.1.1
rational insighteq1.1
rational insighteq1.1.1
rational insighteq1.1.1.1
rational insighteq1.1.1.2
rational insighteq1.1.1.3

Name	Operator	Version
rational insight	eq	1.0
rational insight	eq	1.0.0.1
rational insight	eq	1.0.0.2
rational insight	eq	1.0.1
rational insight	eq	1.0.1.1
rational insight	eq	1.1
rational insight	eq	1.1.1
rational insight	eq	1.1.1.1
rational insight	eq	1.1.1.2
rational insight	eq	1.1.1.3