IBM Product Security Incident Response


Archive

Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect Rational Performance Tester

Aug 31, 2021 3:41 pm EDT | Low Severity

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 1.8 and IBM® Runtime Environment Java™ Version 1.8 used by Rational Performance Tester. Rational Performance Tester has addressed the applicable CVEs. ...read more


Security Bulletin: IBM API Connect is impacted by a vulnerability in Drupal CKEditor (CVE-2020-27193)

Aug 31, 2021 3:41 pm EDT | Medium Severity

IBM API Connect has addressed the following vulnerability. ...read more


Security Bulletin: Multiple vulnerabilities in IBM Java Runtime Affect IBM Sterling External Authentication Server

Aug 31, 2021 3:41 pm EDT | Critical Severity

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 1.8 used by IBM Sterling External Authentication Server. IBM Sterling External Authentication Server has addressed the applicable CVEs. ...read more


Security Bulletin: IBM Maximo Asset Management is vulnerable to cross-site scripting (CVE-2021-29744)

Aug 31, 2021 3:40 pm EDT | Medium Severity

IBM Maximo Asset Management is vulnerable to cross-site scripting. ...read more


Security Bulletin: IBM DataPower Gateway vulnerable to a DoS

Aug 31, 2021 3:40 pm EDT | High Severity

IBM has addressed the following vulnerability within the Gateway Director component. Note that the vulnerability existed in only the immediately preceding version in all releases. ...read more


Security Bulletin: Multiple Vulnerabilities Affect IBM Secure External Authentication Server

Aug 31, 2021 3:40 pm EDT | Medium Severity

There are multiple vulnerabilities in IBM Secure External Authentication Server. IBM Secure External Authentication Server has addressed the applicable CVEs. ...read more


Security Bulletin: IBM Security Identity Manager Virtual Appliance deprecated Self Service UI contains Struts V1 (CVE-2016-1182)

Aug 31, 2021 3:40 pm EDT | Medium Severity

IBM Security Identity Manager Virtual Appliance made code changes to remove the deprecated function and its associated Struts V1 code library. ...read more


Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities

Aug 31, 2021 3:40 pm EDT | Critical Severity

IBM Security Guardium has fixed these vulnerabilities ...read more


Security Bulletin: IBM Db2 Query Monitor fix for potential JSSE vulnerability. PSIRT 255377

Aug 31, 2021 3:40 pm EDT | Low Severity

PROBLEM DESCRIPTION: Potential vulnerability in JSSEcomponent. ...read more