High Severity
Security Bulletin: A Privilege Escalation vulnerability in Pivotal Spring Framework affects IBM LKS Administration & Reporting Tool and its Agent
September 3, 2021
Categorized: High Severity
Share this post:
A Privilege Escalation related vulnerability has been found in Pivotal Spring Framework used by IBM LKS Administration & Reporting Tool (ART) and its Agent. A fix has been published.
CVE(s): CVE-2021-22118
Affected product(s) and affected version(s):
Affected Product(s) | Version(s) |
IBM Common Licensing | Agent 9.0 |
IBM Common Licensing | ART 9.0 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6486305
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/202705
Security Bulletin: Multiple vulnerabilities in Golang Go affect Cloud Pak System
August 16, 2022 | High Severity
Multiple vulnerabilities in Golang Go affect Cloud Pak System. IBM Cloud Pak System has addressed these vulnerabilities. ...read more
Security Bulletin: Vulnerabilities in Intel Chipset affect IBM Cloud Pak System (CVE-2021-0060, CVE-2021-0147, CVE-2021-33080)
August 16, 2022 | High Severity
Vulnerabilities in Intel Chipset affect IBM Cloud Pak System. IBM Cloud Pak System has addressed these vulnerabilities. ...read more
Security Bulletin: IBM InfoSphere Identity Insight vulnerabilities in third party libraries (CVE-2021-39239, CVE-2022-23308, CVE-2021-29424, CVE-2020-15250, 177835)
August 16, 2022 | High Severity
A vulnerability in the libxml2 library can cause a denial of service in IBM InfoSphere Identity Insight. Other vulnerabilities that do not impact Identity Insight are present in four libraries that are currently included with the product but not used. ...read more