IBM SDK, Java Technology Edition is vulnerable to XML External Entity Injection (XXE). This error occurs when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume memory resources.
www.securityfocus.com/bid/98401
access.redhat.com/errata/RHSA-2017:1220
access.redhat.com/errata/RHSA-2017:1221
access.redhat.com/errata/RHSA-2017:1222
access.redhat.com/errata/RHSA-2017:3453
access.redhat.com/security/updates/classification/#moderate
developer.ibm.com/javasdk/support/security-vulnerabilities/
www.ibm.com/support/docview.wss?uid=swg22002169