CVE-2015-5186

CVE-2015-5186 affects CP4S (Cloud Pak for Security) components reporting with audit before 2.4.4 not sanitizing escape characters in filenames. Connected data confirms CP4S versions affected: 1.8.1.0, 1.8.0.0, and 1.7.2.0. Remediation is to upgrade to CP4S 1.9.0.0 as specified by IBM’s upgrade gu...