Watson Supply Chain Ideas

Use this form to submit an idea for a new product feature. The product team will review your input and provide status updates as decisions are made regarding the request.

Before you submit a new idea, please view requests that have already been submitted. If your idea has already been submitted, you can add comments or vote on the existing idea, thereby indicating your agreement with the idea. We may use this information to help prioritize development of new features.

 

Submit ideas for Watson Marketing and Watson Commerce products

SSP-Configuration Manager: Inadequate Cross-Site Request Forgery Implementation

We use the Sterling Secure proxy application, in conjunction with the Sterling Integrator application, in our Managed File Transfer environment. A penetration test was conducted on our SSP-CM application (v3.4.2) in July 2016, and this brought to the forefront, some security-related Product risks. A PMR (11501) was raised with support and we were advised that a number of these vulnerabilities would be fixed by upgrading to 3.4.3 iFix1 or above. We have subsequently upgraded our SSP to the latest available version (3.4.3 iFix3+), but there was no solution provided for this vulnerability detailed in this RFE.
  • Avatar32.5fb70cce7410889e661286fd7f1897de Guest
  • Jan 8 2018
  • Needs More Information
How will this idea be used?
What is your industry?
What is the idea priority? Medium
DeveloperWorks ID DW_ID104990
RTC ID RTC_ID538315
Link to original RFE http://www.ibm.com/developerworks/rfe/execute?use_case=viewRfe&CR_ID=104990
  • Attach files