IBM Product Security Incident Response


Archive

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Security Guardium

Aug 31, 2021 3:40 pm EDT | Medium Severity

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8 used by IBM Security Guardium. These issues were disclosed as part of the IBM Java SDK updates in Jan 2021 and CVE-2020-2773 from Oracle Apr 2020 CPU ...read more


Security Bulletin: IBM Resilient Disaster Recovery (DR) system allows connections over TLS 1.0 (CVE-2021-29704)

Aug 31, 2021 3:40 pm EDT | Medium Severity

IBM Resilient Disaster Recovery (DR) system allows connections over TLS 1.0 ...read more


Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU – Apr 2021

Aug 31, 2021 3:39 pm EDT | Medium Severity

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 SR10-FP85 and Version 8 SR6-FP30 used by IBM Tivoli Application Dependency Discovery Manager (TADDM). These issues were disclosed as part of the IBM Java SDK updates in Apr2021. ...read more


Security Bulletin: IBM API Connect is impacted by multiple vulnerabilities in Oracle MySQL

Aug 31, 2021 3:39 pm EDT | High Severity

IBM API Connect has addressed the following vulnerabilities. ...read more



Security Bulletin: A vulnerability in Bouncy Castle affect IBM Watson Machine Learning Accelerator

Aug 31, 2021 3:39 pm EDT | Medium Severity

A vulnerability exists in the Bouncy Castle version used by IBM Watson Machine Learning Accelerator. Bouncy Castle upgrade to version 1.69 which resolves these vulnerabilities, is available on IBM Fix Central. ...read more


Security Bulletin: Update Secure Gateway Client in IBM DataPower Gateway to address several CVEs

Aug 31, 2021 3:39 pm EDT | High Severity

Update the version of Node used by Secure Gateway Client component to address the listed CVEs. This issue affects only users of the Secure Gateway Client. ...read more


Security Bulletin: IBM API Connect is impacted by a vulnerability in Drupal CKEditor (CVE-2021-33829)

Aug 31, 2021 3:39 pm EDT | High Severity

IBM API Connect has addressed the following vulnerability. ...read more


Security Bulletin: IBM Content Navigator is vulnerable to a denial of service vulnerabilty.

Aug 31, 2021 3:39 pm EDT | Medium Severity

IBM Content Navigator has addressed the following vulnerabilities. ...read more