FileNet Content Management Interoperability Services (CMIS) is shipped as a component of IBM Case Manager. Information about a security vulnerability affecting FileNet Content Management Interoperability Services (CMIS) has been published in a separate security bulletin.
Please consult the security bulletin Security Bulletin: FileNet Content Management Interoperability Services (CMIS), which ships with IBM Content Navigator, is affected by the ability to parse untrusted XML input containing a reference to an external entity for vulnerability details and information about fixes.
This vulnerability affects the following versions and releases:
Product
|
VRMF
|
APAR
|
Remediation/First Fix
—|—|—|—
IBM Case Manager | 5.3.0.0 - 5.3.3.0 | PJ45479 | 5.3.3.0-ICM-IF001 or later versions
IBM Case Manager | 5.2.1.0 - 5.2.1.7 | PJ45496 | 5.2.1.7-ICM-IF004_ or later versions_
IBM Case Manager | 5.2.0.0 - 5.2.0.4 | PJ45497 | 5.2.0.4-ICM-IF003 or later versions
CPE | Name | Operator | Version |
---|---|---|---|
ibm case manager | eq | any |