Hi Karen.
This has been resolved by doing this:
1. Update HSM to Version 5.5.4.1 <= java version
1.8.0_2812. Update XCLI to Version 5.5.4.1 <= java version 15.0.2" 2021-01-19
The above has resolved our 'Vulnerability' flags which we were getting earlier.
Best
------------------------------
Sudhir BISHT
------------------------------
Original Message:
Sent: Wed August 25, 2021 01:49 PM
From: karen larson
Subject: HyperScale Manager Server (5.5.3) Security Vulnerabilities
Same issue, let me know if you find a solution that helped.
Regards,
Team Smokekitchen
------------------------------
karen larson
Original Message:
Sent: Mon August 23, 2021 01:43 PM
From: Sudhir BISHT
Subject: HyperScale Manager Server (5.5.3) Security Vulnerabilities
Our security vulnerability alerted us that we have vulnerabilities on our Hyperscale Manager Server(5.5.3). We upgraded the HSM to latest and greatest version 5.5.3 and a rescan of server shows vulnerabilities related to java and extended CLI.
They still find the vulnerabilities related to java and Extended XCLI. Note, XCLI installed is also latest installed available in Fix Central dated 2017. Does IBM has another latest version of XCLI available somewhere. Let us know.
The following vulnerable instance of Java is installed on the
remote host :
Path : /omaagent/agent_13.2.0.0.0/oracle_common/jdk
Installed version : 1.7.0_111
Fixed version : 1.6.0_141 / 1.7.0_131 / 1.8.0_121
Path : /omaagent/agent_13.2.0.0.0/oracle_common/jdk
Installed version : 1.7.0_111
Fixed version : 1.6.0_141 / 1.7.0_131 / 1.8.0_121
Path : /home/msms/IBM_Storage_Extended_CLI
Installed version : 1.7.0_131
Fixed version : 1.6.0_161 / 1.7.0_151 / 1.8.0_141
Path : /omaagent/agent_13.2.0.0.0/oracle_common/jdk
Installed version : 1.7.0_111
Fixed version : 1.6.0_161 / 1.7.0_151 / 1.8.0_141
Path : /omaagent/agent_13.2.0.0.0/oracle_common/jdk
Installed version : 1.7.0_111
Fixed version : 1.6.0_131 / 1.7.0_121 / 1.8.0_111
Path : /home/msms/IBM_Storage_Extended_CLI
Installed version : 1.7.0_131
Fixed version : 1.7.0_221 / 1.8.0_211 / 1.11.0_3 / 1.12.0_1
Path : /omaagent/agent_13.2.0.0.0/oracle_common/jdk
Installed version : 1.7.0_111
Fixed version : 1.7.0_221 / 1.8.0_211 / 1.11.0_3 / 1.12.0_1
Path : /home/msms/hyperscale
Installed version : 1.8.0_201
Fixed version : 1.7.0_221 / 1.8.0_211 / 1.11.0_3 / 1.12.0_1
Path : /home/msms/IBM_Storage_Extended_CLI
Installed version : 1.7.0_131
Fixed version : 1.6.0_211 / 1.7.0_201 / 1.8.0_191 / 1.11.0_1
Path : /omaagent/agent_13.2.0.0.0/oracle_common/jdk
Installed version : 1.7.0_111
Fixed version : 1.6.0_211 / 1.7.0_201 / 1.8.0_191 / 1.11.0_1
Path : /home/msms/IBM_Storage_Extended_CLI
Installed version : 1.7.0_131
Fixed version : 1.6.0_201 / 1.7.0_191 / 1.8.0_181 / 1.10.0_2
Path : /omaagent/agent_13.2.0.0.0/oracle_common/jdk
Installed version : 1.7.0_111
Fixed version : 1.6.0_201 / 1.7.0_191 / 1.8.0_181 / 1.10.0_2
Path : /home/msms/IBM_Storage_Extended_CLI
Installed version : 1.7.0_131
Fixed version : 1.6.0_181 / 1.7.0_171 / 1.8.0_161 / 1.9.0_4
Path : /omaagent/agent_13.2.0.0.0/oracle_common/jdk
Installed version : 1.7.0_111
Fixed version : 1.6.0_181 / 1.7.0_171 / 1.8.0_161 / 1.9.0_4
So request you to please help us remediate these vulnerabilities. How and for what purpose they exist on our HSM server. Please help update them and send us the procedure and the software links to get them.
------------------------------
Sudhir BISHT
------------------------------