Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBME0938320CCB013E47595A62BDBF74A26D25B5F570373955951242210E6E43D0D
HistoryJan 29, 2021 - 2:23 p.m.

Security Bulletin: Vulnerability in IBM Java SDK affects IBM Z Development and Test Environment - Jan 2021

2021-01-2914:23:30
www.ibm.com
38

0.001 Low

EPSS

Percentile

42.2%

JSON

Summary

There is a vulnerability in IBM® SDK Java™ Technology Edition, Version 8 that is used by IBM Z Development and Test Environment. The issue was disclosed as part of the IBM Java SDK updates in October 2020 (CVE-2020-14577)

Vulnerability Details

CVEID:CVE-2020-14577
**DESCRIPTION:**An unspecified vulnerability in Java SE related to the JSSE component could allow an unauthenticated attacker to obtain sensitive information resulting in a low confidentiality impact using unknown attack vectors.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/185055 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
Z Development & Test Environment All

Remediation/Fixes

For all versions, update the currently installed ZD&T Enterprise Edition to v12.0.5.2 or v13.0.1. For instructions on installing this update using Installer, review the topic in the Updating Enterprise Edition IBM Knowledge Center. For the latest updates, see also the Fix list for IBM Z Development and Test Environment.

Workarounds and Mitigations

None

CPENameOperatorVersion
z development & test environmenteqany

Related

prion 1
nvd 1
ubuntucve 1
f5 2
cve 1
ibm 86
debiancve 1
redhatcve 1
veracode 1
alpinelinux 1
cvelist 1
nessus 49
openvas 21
redhat 10
oraclelinux 5
centos 3
amazon 3
mageia 1
fedora 4
osv 1
suse 2
ubuntu 2
debian 1
prion
prion
Design/Logic Flaw
2020-07-15 18:15:00
nvd
nvd
CVE-2020-14577
2020-07-15 18:15:23
ubuntucve
ubuntucve
CVE-2020-14577
2020-07-14 00:00:00
f5
f5
K85742355 : Java SE vulnerability CVE-2020-14577
2020-10-22 00:00:00
K51591999 : Multiple Java vulnerabilities CVE-2020-14562, CVE-2020-14573, CVE-2020-14577, CVE-2020-14578, CVE-2020-14579, CVE-2020-14581, CVE-2020-14593
2022-09-05 00:00:00
cve
cve
CVE-2020-14577
2020-07-15 18:15:23
ibm
ibm
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect ITCAM for SOA (July 2020)
2020-10-27 08:48:04
Security Bulletin: A vulnerability in IBM Java SDK affects IBM Tivoli Netcool Impact (CVE-2020-14577)
2020-12-15 04:55:57
Security Bulletin: A vulnerability in IBM Java SDK affects IBM Tivoli Business Service Manager (CVE-2020-14577)
2020-09-14 09:59:49
debiancve
debiancve
CVE-2020-14577
2020-07-15 18:15:23
redhatcve
redhatcve
CVE-2020-14577
2020-07-15 09:38:50
veracode
veracode
Information Disclosure
2020-07-17 05:32:46
alpinelinux
alpinelinux
CVE-2020-14577
2020-07-15 18:15:23
cvelist
cvelist
CVE-2020-14577
2020-07-15 17:34:28
nessus
nessus
F5 Networks BIG-IP : Java SE vulnerability (K85742355)
2023-11-03 00:00:00
Scientific Linux Security Update : java-1.8.0-openjdk on SL6.x i386/x86_64 (20200716)
2020-07-22 00:00:00
SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2020:14484-1)
2021-06-10 00:00:00
openvas
openvas
Oracle Java SE Security Updates - 03 - (cpujul2020) - Linux
2021-08-25 00:00:00
Oracle Java SE Security Updates - 03 - (cpujul2020) - Windows
2021-08-25 00:00:00
CentOS: Security Advisory for java-11-openjdk (CESA-2020:2969)
2020-08-08 00:00:00
redhat
redhat
(RHSA-2020:3099) Important: java-11-openjdk security update
2020-07-22 12:20:20
(RHSA-2020:3101) Important: java-1.8.0-openjdk security update
2020-07-22 12:20:56
(RHSA-2020:3100) Important: java-1.8.0-openjdk security update
2020-07-22 12:20:39
oraclelinux
oraclelinux
java-11-openjdk security and enhancement update
2020-07-16 00:00:00
java-1.8.0-openjdk security update
2020-07-18 00:00:00
java-11-openjdk security update
2020-07-18 00:00:00
centos
centos
java security update
2020-08-07 12:59:34
java security update
2020-08-07 12:30:19
java security update
2020-08-07 12:29:25
amazon
amazon
Important: java-1.8.0-openjdk
2020-09-15 18:00:00
Important: java-1.8.0-openjdk
2020-09-14 20:58:00
Important: java-11-amazon-corretto
2020-07-14 23:04:00
mageia
mageia
Updated java-1.8.0-openjdk packages fix security vulnerability
2020-08-01 02:25:42
fedora
fedora
[SECURITY] Fedora 31 Update: java-1.8.0-openjdk-1.8.0.262.b10-1.fc31
2020-07-28 15:03:32
[SECURITY] Fedora 32 Update: java-1.8.0-openjdk-1.8.0.262.b10-1.fc32
2020-07-23 01:07:12
[SECURITY] Fedora 32 Update: java-11-openjdk-11.0.8.10-2.fc32
2020-07-24 01:15:49
osv
osv
openjdk-8 - security update
2020-08-13 00:00:00
suse
suse
Security update for java-11-openjdk (important)
2020-08-10 00:00:00
Security update for java-11-openjdk (important)
2020-08-12 00:00:00
ubuntu
ubuntu
OpenJDK vulnerabilities
2020-07-23 00:00:00
OpenJDK 8 vulnerabilities
2020-08-05 00:00:00
debian
debian
[SECURITY] [DLA 2325-1] openjdk-8 security update
2020-08-13 10:07:24

0.001 Low

EPSS

Percentile

42.2%

JSON
Related for E0938320CCB013E47595A62BDBF74A26D25B5F570373955951242210E6E43D0D
prion1nvd1ubuntucve1f52cve1ibm86debiancve1redhatcve1veracode1alpinelinux1cvelist1nessus49openvas21redhat10oraclelinux5centos3amazon3mageia1fedora4osv1suse2ubuntu2debian1