High Severity

IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Cloud Manager with OpenStack

Share this post:

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7.0.10.35, that is used by IBM Cloud Manager. These issues were disclosed as part of the IBM Java SDK updates in April 2019.

CVE(s): CVE-2019-2698, CVE-2019-2697, CVE-2019-2602, CVE-2019-2684, CVE-2019-10245

Affected product(s) and affected version(s):

Affected Product Name Affected Versions
IBM Cloud Manager with OpenStack 4.3

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/959953
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159790
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159789
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159698
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159776
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160010

More stories

Security Bulletin: WebSphere Liberty susceptible to HTTP2 implementation vulnerablility.

Feb 22, 2020 7:00 pm EST | High Severity

IBM Worklight/MobileFoundation has addressed the following vulnerability. WebSphere Liberty susceptible to HTTP2 implementation vulnerablility. ...read more


Security Bulletin: Command injection vulnerabilities in IBM Spectrum Protect Plus (CVE-2020-4210, CVE-2020-4213, CVE-2020-4222, CVE-2020-4212, CVE-2020-4211)

Feb 22, 2020 7:00 pm EST | High Severity

Command injection vulnerabilities in IBM Spectrum Protect Plus could allow a remote attacker to execute arbitrary code on the system. ...read more


Security Bulletin: A security vulnerability has been identified in libjpeg-turbo shipped with PowerAI.

Feb 22, 2020 7:00 pm EST | High Severity

Vulnerability CVE-2019-2201 found in libjpeg-turbo package. ...read more