There is a Vulnerability in IBM® Runtime Environment Java™ , Version 8 used by IBM Host On-Demand These issues were disclosed as part of the IBM Java SDK updates in October 2017.
CVEID: CVE-2017-10309**
DESCRIPTION:** An unspecified vulnerability related to the Java SE Deployment component could allow an unauthenticated attacker to cause low confidentiality impact, low integrity impact, and low availability impact.
CVSS Base Score: 7.1
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/133738 for the current score
CVSS Environmental Score*: Undefined
IBM Host On-Demand 12.0.0 - 12.0.3
IBM Host On-Demand 13.0
Upgrade to JRE 8.0 SR5 FP5 on client machine.
None