IBM Support

IV60430: SECURITY APAR CVE-2014-0114 APACHE STRUTS V1 VULNERABILITY AFFECTS TIVOLI ENDPOINT MANAGER FOR REMOTE CONTROL

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • Tivoli Endpoint Manager for Remote Control versions 8.2.1 and
    8.2.0 are affected by vulnerabilities in Apache Struts V1
    that is included in Tivoli Endpoint Manager for Remote Control.
    
    CVE id: CVE-2014-0114
    

Local fix

  • not available
    

Problem summary

  • Users affected
    
    Server    All
    

Problem conclusion

  • The fix for this APAR is contained in the following maintenance
    packages:
    8.2.1-TIV-TEMRC821-HotFix-IV60430
    8.2.0-TIV-TEMRC820-HotFix-IV60430
    

Temporary fix

Comments

APAR Information

  • APAR number

    IV60430

  • Reported component name

    TIV EP MGR REM

  • Reported component ID

    5725C43RC

  • Reported release

    820

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2014-05-14

  • Closed date

    2014-05-28

  • Last modified date

    2014-05-28

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    TIV EP MGR REM

  • Fixed component ID

    5725C43RC

Applicable component levels

  • R820 PSY

       UP



Document information

More support for: IBM BigFix family

Software version: 820

Reference #: IV60430

Modified date: 28 May 2014