Are there any plans to include a CVSS score with Security and Integrity PTFs issued by ACF2

book

Article ID: 195724

calendar_today

Updated On:

Products

CA ACF2 CA ACF2 - DB2 Option CA ACF2 for zVM CA ACF2 - z/OS CA ACF2 - MISC CA LDAP Server for z/OS CA PAM Client for Linux for zSeries CA Web Administrator for Top Secret

Issue/Introduction

PTFs for ACF2 and other CA/Broadcom Mainframe products that have a description of "Security or Integrity Problem".

IBM products PTFs for security and integrity problems include a CVSS score (Common Vulnerability Scoring System). Are there any plans to include a CVSS score with Security and Integrity PTFs issued by CA/Broadcom for Mainframe products such as ACF2?

Environment

Release : 16.0

Component : CA ACF2 for z/OS

Resolution

The ACF2 team is currently looking at what needs to be done to add CVSS to future PTFs. As of right now, there is no date or time schedule for this to be added.