IBM Security Bulletin: ClassLoader manipulation with Apache Struts affecting Tivoli Storage Productivity Center (CVE-2014-0114)
IBM PSIRT 270004PFE3 firstname.lastname@example.org | | Tags:  psirttivoli psirthigh
0 Comments | 611 Visits
There is a ClassLoader manipulation vulnerability in Apache Struts that is used by Tivoli Integrated Portal (TIP) and its embedded WebSphere Application Server (eWAS). This vulnerability only affects Tivoli Integrated Portal and does not affect other areas of Tivoli Storage Productivity Center or other instances of embedded WebSphere Application Server within it.
Tivoli Integrated Portal (TIP) version 1.x and version 2.x, which are part of the following products: