Security Bulletin: Vulnerability in SSLv3 affects FileNet Content Manager, FileNet BPM and IBM Content Foundation (CVE-2014-3566)
IBM just posted a Security Bulletin of a vulnerability in SSLv3 which affects FileNet Content Manager, FileNet BPM and IBM Content Foundation.
SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption (POODLE) attack. SSLv3 is configurable in FileNet Content Manager and FileNet BPM products. See the below technote for more details and how to resolve the vulnerability.
/support/pages/node/517471
[{“Business Unit”:{“code”:“BU053”,“label”:“Cloud & Data Platform”},“Product”:{“code”:“SSNVNV”,“label”:“FileNet Content Manager”},“Component”:“”,“Platform”:[{“code”:“PF025”,“label”:“Platform Independent”}],“Version”:“”,“Edition”:“”,“Line of Business”:{“code”:“LOB45”,“label”:“Automation”}}]
ibm11280398