A security vulnerability has been identified in IBM SDK that could affect DataQuant for z/OS.
CVEID: CVE-2019-2684
CVSS Base Score: 5.9
DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the Java SE, Java SE Embedded RMI component could allow an unauthenticated attacker to cause no confidentiality impact, high integrity impact, and no availability impact.
CVEID: CVE-2019-2602
CVSS Base Score: 7.5
DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the Java SE, Java SE Embedded Libraries component could allow an unauthenticated attacker to cause a denial of service resulting in a high availability impact using unknown attack vectors.
CVEID: CVE-2019-2697
CVSS Base Score: 8.1
DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the Java SE 2D component could allow an unauthenticated attacker to take control of the system.
CVEID: CVE-2019-2698
CVSS Base Score: 8.1
DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the Java SE 2D component could allow an unauthenticated attacker to take control of the system.
DataQuant for z/OS 2.1
Steps to update JRE - DataQuant:
None