Regarding the security alert on Deliver 14.0 and vulnerabilities, is this vulnerability about use of the web-interface to View, or the product itself?
Release : 14.0
The Deliver vulnerabilities were not vulnerabilities, but were unexpected results from the IBM vulnerability test.
In Deliver PTF LU09330, which affects the Deliver base component FMID CBRNE00, there are changes for Deliver to not be marked as a vulnerability or an unknown.
See information on the vulnerability at: Deliver 14.0 vulnerability