Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with OpenPages GRC Platform (CVE-2017-1137)

Summary IBM WebSphere Application Server is shipped as a component of OpenPages GRC Platform. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin IBM WebSphere...

Security Bulletin: IBM OpenPages GRC Platform Web Applications are not vulnerable to (CVE-2017-5638)

Summary IBM OpenPages GRC Platform Web Applications are not vulnerable to the Apache Struts 2 vulnerability CVE-2017-5638 Vulnerability Details IBM OpenPages GRC Platform Web Applications are NOT vulnerable to the Apache Struts 2 vulnerability CVE-2017-5638. Please refer to...

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with OpenPages GRC Platform (CVE-2016-5986)

Summary IBM WebSphere Application Server is shipped as a component of OpenPages GRC Platform. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin IBM Websphere...

A security vulnerability has been identified in IBM WebSphere Application Server shipped with OpenPages GRC Platform (CVE-2017-1121)

Summary IBM WebSphere Application Server is shipped as a component of OpenPages GRC Platform. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin IBM Websphere...

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with OpenPages GRC Platform (CVE-2016-8919)

Summary IBM WebSphere Application Server is shipped as a component of OpenPages GRC Platform. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin IBM WebSphere...

Security Bulletin: A security vulnerability has been identified in IBM Cognos 10.2.1.3 and IBM Cognos 10.2.2.1 shipped with OpenPages GRC Platform (CVE-2016-0346)

Summary The IBM OpenPages GRC Platform ships with IBM Cognos components. A security vulnerability affecting the IBM Cognos components has been identified. See table below for details Vulnerability Details Please consult the security bulletin http://www.ibm.com/support/docview.wss?uid=swg21984323...

Security Bulletin: IBM OpenPages GRC Platform has addressed multiple Apache POI vulnerabilities (CVE-2017-5644, CVE-2016-5000, CVE-2014-3574)

Summary IBM OpenPages GRC Platform has addressed potential security exposure due to multiple vulnerabilities in Apache POI library. Vulnerability Details CVE-ID: CVE-2017-5644 Description: Apache POI is vulnerable to a denial of service, cause by an XML External Entity Injection XXE error when...

Security Bulletin: A security vulnerability has been identified in IBM Cognos shipped with IBM OpenPages GRC Platform (CVE-2016-0234)

Summary IBM OpenPages GRC Platform has a potential security exposure, due to an issue found in bundled IBM Cognos Business Intelligence. Vulnerability Details CVEID: CVE-2016-0234 DESCRIPTION: IBM OpenPages GRC Platform could allow a local user to obtain sensitive information when a previous user...

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with OpenPages GRC Platform (CVE-2016-9736 )

Summary IBM WebSphere Application Server is shipped as a component of OpenPages GRC Platform. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin IBM WebSphere...

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with OpenPages GRC Platform (CVE-2016-5983)

Summary IBM WebSphere Application Server is shipped as a component of OpenPages GRC Platform. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin IBM WebSphere...

Security Bulletin: IBM OpenPages GRC Platform Information disclosure (CVE-2016-3050)

Summary IBM OpenPages GRC Platform has a potential security exposure due to an Information disclosure vulnerability. Vulnerability Details CVEID: CVE-2016-3050 DESCRIPTION: IBM OpenPages GRC Platform could disclose sensitive information to an authenticated user through error logs. CVSS Base Score...

Security Bulletin: IBM OpenPages GRC Platform HTML injection (CVE-2016-3049)

Summary IBM OpenPages GRC Platform has a potential security exposure due to a HTML injection vulnerability. Vulnerability Details CVEID: CVE-2016-3049 DESCRIPTION: IBM OpenPages GRC Platform is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed,...

Security Bulletin: IBM OpenPages GRC Platform is affected by multiple XSS reflection vulnerabilities (CVE-2017-1147, CVE-2016-3048)

Summary IBM OpenPages GRC Platform has addressed potential security exposure due to multiple XSS reflection vulnerabilities. Vulnerability Details CVEID: CVE-2017-1147 DESCRIPTION: IBM OpenPages GRC Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary...

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with OpenPages GRC Platform (CVE-2016-8934)

Summary IBM WebSphere Application Server is shipped as a component of OpenPages GRC Platform. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin IBM WebSphere...

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with OpenPages GRC Platform (CVE-2017-1151)

Summary IBM WebSphere Application Server is shipped as a component of OpenPages GRC Platform. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin IBM WebSphere...

Security Bulletin: Potential vulnerability in IBM OpenPages GRC Platform due to vulnerability in Flexera InstallAnywhere based installation (CVE-2016-2542)

Summary The following potential security vulnerability has been identified in versions of IBM OpenPages GRC Platform that use a Flexera InstallAnywhere based installer. See the Vulnerability Details section for more information. Vulnerability Details Customers who have IBM OpenPages GRC Platform...

Security Bulletin: Potential vulnerabilities in IBM OpenPages GRC Platform with Application Server

Summary The following potential security vulnerabilities have been identified in all versions of IBM OpenPages GRC Platform with Application Server. See the Vulnerability Details section for more information. Vulnerability Details Customers who have IBM OpenPages GRC Platform with Application...

Security Bulletin: Potential vulnerabilities in IBM OpenPages GRC Platform with Database

Summary These potential security vulnerabilities exist in all versions of IBM OpenPages GRC Platform with Database: See Vulnerability Details for CVE IDs. Vulnerability Details Customers who have IBM OpenPages GRC Platform with Database are potentially impacted by these vulnerabilities. CVEID:...

Security Bulletin: Potential vulnerabilities in IBM OpenPages GRC Platform with Application Server

Summary The following potential security vulnerabilities have been identified in all versions of IBM OpenPages GRC Platform with Application Server. See the Vulnerability Details section for more information. Vulnerability Details Customers who have IBM OpenPages GRC Platform with Application...

Security Bulletin: IBM OpenPages Platform with Database vulnerabilities.

Summary These security vulnerabilities exist in all versions of IBM OpenPages with Database: See Vulnerability Details for CVE IDs. Vulnerability Details Customers who have IBM OpenPages with Database are potentially impacted by these vulnerabilities. CVE-ID: CVE-2013-3751 Description: An...