IBM Product Security Update Advisory (CVE-2024-39747)

Sep 02 2024

Overview

An update has been released to address vulnerabilities in IBM Products. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-39747

IBM Sterling Connect:Direct Web Services version: 6.3.0
IBM Sterling Connect:Direct Web Services version: 6.1.0
IBM Sterling Connect:Direct Web Services version: 6.2.0
IBM Connect:Direct Web Services version: 6.0

Resolved Vulnerabilities

Vulnerability using default credentials for potentially sensitive functionality (CVE-2024-39747)

Vulnerability Patches

The following product-specific Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-39747

IBM Sterling Connect:Direct Web Services version: 6.3.0.9
IBM Sterling Connect:Direct Web Services version: 6.1.0.25
IBM Sterling Connect:Direct Web Services version: 6.2.0.24
IBM Connect:Direct Web Services version: 6.1.0.25, 6.2.0.24, 6.3.0.9

References

[1] CVE-2024-39747 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-39747

[2] Security Bulletin: IBM Sterling Connect:Direct Web Service is vulnerable to a vulnerability in IBM Java

https://www.ibm.com/support/pages/node/7166947

IBM Product Security Update Advisory (CVE-2024-39747)

Cisco Family August 2024 First Round Security Update Advisory

ManageEngine (Exchange Reporter Plus) Product August 2024 Security Update Advisory

Tags:

Cisco Family August 2024 First Round Security Update Advisory

ManageEngine (Exchange Reporter Plus) Product August 2024 Security Update Advisory