Security Bulletin: Rational Developer for System z is affected due to vulnerabilities in IBM Java IBM SDK, Java Technology Edition - April 2014 (CVE-2014-0453)

Summary IBM Java IBM SDK, Java Technology Edition SE issues disclosed in the April 2014 Critical Patch Update, plus 1 additional vulnerability affects Rational Developer for System z. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like thi...

Security Bulletin: Open Source Apache Batik vulnerability affects Rational Developer for System z (CVE-2015-0250)

Summary Rational Developer for System z is affected by the Open Source Apache Batik vulnerability and has addressed the applicable CVEs Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more information require...

Security Bulletin: There is a vulnerability in IBM Java SDK that affects Rational Developer for System z (CVE-2014-3566)

Summary There is a vulnerability in IBM SDK Java Technology Edition, Versions 6 and 7, which are used by Rational Developer for System z. This includes the Padding Oracle On Downgraded Legacy Encryption POODLE SSLv3 vulnerability CVE-2014-3566. This was disclosed as part of the IBM Java SDK updat...

Security Bulletin: Potential security vulnerability for the Oracle June 2012 CPU (CVE-2012-1713) shipped with Rational Developer for System z

Summary IBM Rational Developer for System z is shipped with an IBM Java that is based on the Oracle Java. Oracle has released a June 2012 critical patch updates CPU which contain security vulnerability fixes and the IBM Java is affected. Vulnerability Details | Subscribe to My Notifications to be...

Security Bulletin: Vulnerability in IBM Java SDK affects Rational Developer for System z (CVE-2015-7575)

Summary There is a vulnerability in IBM® SDK Java™ Technology Edition that is used by Rational Developer for System z. This vulnerability, commonly referred to as “SLOTH”, was disclosed as part of the IBM Java SDK updates in January 2016. Vulnerability Details | Subscribe to My Notifications to b...

Security Bulletin: Rational Developer for System z - Add support for TLS v1.2 with MS-CAPI in HCE

Summary IBM Rational Developer for System z has added support for TLS v1.2 with MS-CAPI in the Host Connection Emulator Vulnerability Details CVEID: CVE-2017-1796 DESCRIPTION: IBM Developer for z Systems uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affects Rational Developer for System z (CVE-2016-0363 and CVE-2016-0376)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition that is used by Rational Developer for System z. These issues were disclosed as part of the IBM Java SDK updates in April 2016. Vulnerability Details | Subscribe to My Notifications to be notified of important product...

Security Bulletin: Vulnerability in Apache Commons affects Rational Developer for System z (CVE-2015-7450)

Summary An Apache Commons Collections vulnerability for handling Java object deserialization was addressed by Rational Developer for System z Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more information...

Security Bulletin: Vulnerabilities in GSKit affect Rational Developer for System z (CVE-2015-7421, CVE-2015-7420)

Summary Vulnerabilities were discovered in GSKit. Rational Developer for System z uses GSKit and addressed the applicable CVE. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more information requires login...

Security Bulletin: Rational Developer for System z CPU utilization (CVE-2014-0963)

Summary IBM Rational Developer for System z is affected by a problem related to the SSL implementation which, under very specific conditions, can cause CPU utilization to rapidly increase. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts lik...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Rational Developer for System z (CVE-2015-0138, CVE-2015-0410, CVE-2014-6593)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Versions 6 and 7 that is used by Rational Developer for System z. These issues were disclosed as part of the IBM Java SDK updates in January 2015. This bulletin also addresses the “FREAK: Factoring Attack on RSA-EXPO...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Rational Developer for System z CVE-2015-0138

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, that is used by Rational Developer for System z. These issues were disclosed as part of the IBM Java SDK updates in January 2015. This bulletin also addresses the “FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL...

Security Bulletin: Rational Developer for System z is affected due to vulnerabilities in IBM Java IBM SDK, Java Technology Edition - Jan 2014

Summary This advisory covers security vulnerability updates for the January IBM Java IBM SDK, Java Technology Edition releases that affect Rational Developer for System z. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow th...

Security Bulletin: Security vulnerability in Rational Developer for System z (CVE-2013-0485)

Summary An unspecified vulnerability in IBM Rational Developer for System z could allow remote attackers to execute arbitrary commands via unknown vectors. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more...

Security Bulletin: Vulnerabilities in OpenSSL including Logjam affect Rational Developer for System z (CVE-2015-4000)

Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project and affect Rational Developer for System z. This includes the Logjam Attack on TLS connections using the Diffie-Hellman DH key exchange protocol CVE-2015-4000. Rational Developer for System z has addressed the applicable CVEs...

Security Bulletin: Vulnerability in Rational Developer for System z due to issues in IBM Java SDK (CVE-2013-0440, CVE-2013-0443, CVE-2013-0169)

Summary The version of IBM WebSphere Application Server that is shipped with Rational Developer for System z is shipped with an IBM Java SDK that is based on the Oracle SDK. Oracle has released February 2013 critical patch updates CPU which contain security vulnerability fixes and the IBM Java SD...

Security Bulletin: Vulnerability in RC4 stream cipher affects Rational Developer for System z (CVE-2015-2808)

Summary The RC4 “Bar Mitzvah” Attack for SSL/TLS affects Rational Developer for System z. Vulnerability Details CVEID: CVE-2015-2808 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information. An attacker could explo...

Security Bulletin: Vulnerability in RC4 stream cipher affects Rational Developer for System z (CVE-2015-2808)

Summary The RC4 “Bar Mitzvah” Attack for SSL/TLS affects Rational Developer for System z. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more information requires login with your IBM ID ---|--- CVEID:...

Security Bulletin: IBM API Connect's Developer Portal is vulnerable to social engineering attacks (CVE-2020-4337)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-4337 DESCRIPTION: IBM API Connect could allow an attacker to launch phishing attacks by tricking the server to generate user registration emails that contain malicious URLs. CVSS Base score: 6...

CVE-2020-14740

Vulnerability in the SQL Developer Install component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1 and 18c. Easily exploitable vulnerability allows low privileged attacker having Client Computer User Account privilege with logon to the...