Security Bulletin: Multiple security vulnerabilities affect Liberty for Java for IBM Cloud (CVE-2018-1683, CVE-2018-1755, CVE-2018-8039)
  • Liberty for Java
  • Sydney
    Frankfurt
    London
    Washington DC
    Dallas
  • Description
    There are potential information disclosure vulnerabilities in Liberty for Java for IBM Cloud. There is a potential man-in-the-middle attack in Apache CXF, which is used by the Liberty for Java runtime on IBM Cloud.

    A user action is needed to update Liberty for Java on IBM Cloud.

    For more information, see the security bulletin.