Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBME81A7F83DB6CCF845D1F68D53EE747616EC76CE62402276EDF7AF95B27DBBFDB
HistorySep 25, 2020 - 4:23 p.m.

Security Bulletin: Multiple Java Vulnerabilities Impact IBM Control Center

2020-09-2516:23:32
www.ibm.com
20
ibm control center
java vulnerabilities
versions 6.1.3
6.0.0.2
unspecified vulnerabilities
denial of service
sensitive information disclosure

EPSS

0.003

Percentile

71.8%

JSON

Summary

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 7 and 8 that is used by IBM Control Center. These issues were disclosed as part of the IBM Java SDK updates in July 2020

Vulnerability Details

CVEID:CVE-2020-14578
**DESCRIPTION:**An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown attack vectors.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/185056 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID:CVE-2020-14577
**DESCRIPTION:**An unspecified vulnerability in Java SE related to the JSSE component could allow an unauthenticated attacker to obtain sensitive information resulting in a low confidentiality impact using unknown attack vectors.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/185055 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Control Center 6.1.3
IBM Control Center 6.0.0.2

Remediation/Fixes

Product

|

VRMF

|

iFix

|

Remediation

—|—|—|—

IBM Control Center

|

6.0.0.2

|

iFix12

|

Fix Central - 6.0.0.2

IBM Control Center

|

6.1.3.0

|

iFix03

|

Fix Central - 6.1.3.0

Workarounds and Mitigations

None

Related

ibm 105
veracode 2
nvd 2
ubuntucve 2
prion 2
vulnrichment 2
alpinelinux 2
cvelist 2
debiancve 2
redhatcve 2
f5 2
cve 2
nessus 32
redhat 8
openvas 16
amazon 2
oraclelinux 3
centos 2
mageia 1
fedora 2
ubuntu 1
debian 2
osv 1
aix 1
rosalinux 1
ibm
ibm
Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - Jul 2020 - Includes Oracle Jul 2020 CPU plus one additional vulnerability
2020-12-03 16:10:56
Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect Rational Performance Tester
2020-12-16 19:51:45
Security Bulletin: Multiple Vulnerabilities in Java affecting Watson Knowledge Catalog for IBM Cloud Pak for Data
2021-01-14 15:11:28
veracode
veracode
Denial Of Service (DoS)
2020-07-17 05:37:47
Information Disclosure
2020-07-17 05:32:46
nvd
nvd
CVE-2020-14578
2020-07-15 18:15:23
CVE-2020-14577
2020-07-15 18:15:23
ubuntucve
ubuntucve
CVE-2020-14577
2020-07-14 00:00:00
CVE-2020-14578
2020-07-14 00:00:00
prion
prion
Design/Logic Flaw
2020-07-15 18:15:00
Design/Logic Flaw
2020-07-15 18:15:00
vulnrichment
vulnrichment
CVE-2020-14578
2020-07-15 17:34:28
CVE-2020-14577
2020-07-15 17:34:28
alpinelinux
alpinelinux
CVE-2020-14578
2020-07-15 18:15:23
CVE-2020-14577
2020-07-15 18:15:23
cvelist
cvelist
CVE-2020-14578
2020-07-15 17:34:28
CVE-2020-14577
2020-07-15 17:34:28
debiancve
debiancve
CVE-2020-14578
2020-07-15 18:15:23
CVE-2020-14577
2020-07-15 18:15:23
redhatcve
redhatcve
CVE-2020-14578
2020-07-15 09:39:03
CVE-2020-14577
2020-07-15 09:38:50
f5
f5
K85742355 : Java SE vulnerability CVE-2020-14577
2020-10-22 00:00:00
K51591999 : Multiple Java vulnerabilities CVE-2020-14562, CVE-2020-14573, CVE-2020-14577, CVE-2020-14578, CVE-2020-14579, CVE-2020-14581, CVE-2020-14593
2022-09-05 00:00:00
cve
cve
CVE-2020-14577
2020-07-15 18:15:23
CVE-2020-14578
2020-07-15 18:15:23
nessus
nessus
F5 Networks BIG-IP : Java SE vulnerability (K85742355)
2023-11-03 00:00:00
CentOS 8 : java-1.8.0-openjdk (CESA-2020:2972)
2021-02-01 00:00:00
SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2020:14484-1)
2021-06-10 00:00:00
redhat
redhat
(RHSA-2020:3100) Important: java-1.8.0-openjdk security update
2020-07-22 12:20:39
(RHSA-2020:2972) Important: java-1.8.0-openjdk security update
2020-07-16 08:25:58
(RHSA-2020:2968) Important: java-1.8.0-openjdk security update
2020-07-16 08:24:29
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:2482-1)
2021-04-19 00:00:00
Oracle Java SE Security Updates - 02 - (cpujul2020) - Linux
2021-08-25 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:14484-1)
2021-06-09 00:00:00
amazon
amazon
Important: java-1.8.0-openjdk
2020-09-15 18:00:00
Important: java-1.8.0-openjdk
2020-09-14 20:58:00
oraclelinux
oraclelinux
java-1.8.0-openjdk security update
2020-07-18 00:00:00
java-1.8.0-openjdk security update
2020-07-16 00:00:00
java-1.8.0-openjdk security update
2020-07-17 00:00:00
centos
centos
java security update
2020-08-07 12:30:19
java security update
2020-08-07 12:59:34
mageia
mageia
Updated java-1.8.0-openjdk packages fix security vulnerability
2020-08-01 02:25:42
fedora
fedora
[SECURITY] Fedora 31 Update: java-1.8.0-openjdk-1.8.0.262.b10-1.fc31
2020-07-28 15:03:32
[SECURITY] Fedora 32 Update: java-1.8.0-openjdk-1.8.0.262.b10-1.fc32
2020-07-23 01:07:12
ubuntu
ubuntu
OpenJDK 8 vulnerabilities
2020-08-05 00:00:00
debian
debian
[SECURITY] [DLA 2325-1] openjdk-8 security update
2020-08-13 10:07:24
[SECURITY] [DSA 4734-1] openjdk-11 security update
2020-07-26 19:58:03
osv
osv
openjdk-8 - security update
2020-08-13 00:00:00
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2020-11-03 15:29:58
rosalinux
rosalinux
Advisory ROSA-SA-2023-2314
2023-12-19 12:08:45

EPSS

0.003

Percentile

71.8%

JSON
Related for E81A7F83DB6CCF845D1F68D53EE747616EC76CE62402276EDF7AF95B27DBBFDB
ibm105veracode2nvd2ubuntucve2prion2vulnrichment2alpinelinux2cvelist2debiancve2redhatcve2f52cve2nessus32redhat8openvas16amazon2oraclelinux3centos2mageia1fedora2ubuntu1debian2osv1aix1rosalinux1