Critical Severity

Security Bulletin: A security vulnerability in Node.js node-forge module affects IBM Cloud Pak for Multicloud Management Managed Service.

Share this post:

A security vulnerability in Node.js node-forge module affects IBM Cloud Pak for Multicloud Management Managed Service.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Cloud Pak for Multicloud Management Infrastructure Management 2.0
IBM Cloud Pak for Multicloud Management Infrastructure Management 2.1

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6382358

More stories

Security Bulletin: De-serialization Vulnerability Affects IBM Partner Engagement Manager (CVE-2021-29781)

Jul 29, 2021 8:11 pm EDT | Critical Severity

IBM Sterling Partner Engagement Manager could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization flaw. By sending specially-crafted data, an attacker could exploit this vulnerability to execute arbitrary code on the system. ...read more


Security Bulletin: i2 Analyze has an information disclosure vulnerability (CVE-2019-17638)

Jul 29, 2021 8:02 pm EDT | Critical Severity

i2 Analyze uses a version of Jetty wth known vulnerabilities. ...read more


Security Bulletin: RabbitMQ as used by IBM QRadar SIEM is vulnerable to unsafe deserialization (CVE-2020-36282)

Jul 27, 2021 8:22 pm EDT | Critical Severity

RabbitMQ as used by IBM QRadar SIEM is vulnerable to unsafe deserialization ...read more