Low Severity

Security Bulletin: Application error in IBM Security Guardium Key Lifecycle Manager (CVE-2021-38980)

Share this post:

Application error in IBM Security Guardium Key Lifecycle Manager (CVE-2021-38980).

CVE(s): CVE-2021-38980

Affected product(s) and affected version(s):

Affected Product(s) Affected Version(s)
IBM Security Key Lifecycle Manager 3.0 – 3.0.0.4
IBM Security Key Lifecycle Manager 3.0.1 – 3.0.1.5
IBM Security Key Lifecycle Manager 4.0 – 4.0.0.3
IBM Security Guardium Key Lifecycle Manager 4.1.0 – 4.1.0.1
IBM Security Guardium Key Lifecycle Manager 4.1.1

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6518326
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/212786

More stories

Security Bulletin: Vulnerability in Apache Log4j affects IBM Cloud Private (CVE-2021-45046)

Jan 18, 2022 7:02 pm EST | Low Severity

There is a vulnerability in the Apache Log4j open source library. The library is used by Elasticsearch, a dependency of IBM Cloud Private, for logging messages to files. This bulletin identifies the security fixes to apply to address the Log4Shell vulnerability (CVE-2021-45046). ...read more


Security Bulletin: IBM Rational Build Forge 8.0.x is affected by Java version used in it.(CVE-2021-2341)

Jan 17, 2022 7:03 pm EST | Low Severity

IBM Rational Build Forge version 8.0 to 8.0.0.20 is affected by the Java version used in it. CVE-2021-2341 ...read more


Security Bulletin: IBM Rational Build Forge 8.0.x is affected by Apache HTTP Server version used in it. (CVE-2021-39275)

Jan 17, 2022 7:02 pm EST | Low Severity

IBM Rational Build Forge version 8.0.x is affected by CVE-2021-39275 ...read more