High Severity

Security Bulletin: Automation Assets in IBM Cloud Pak for Integration is vulnerable to denial of service due to CVE-2022-31129

Share this post:

Automation Assets in IBM Cloud Pak for Integration is vulnerable to denial of service due to CVE-2022-31129 with details below

CVE(s): CVE-2022-31129

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
Automation Assets in IBM Cloud Pak for Integration (CP4I) 2020.4.1
2021.1.1
2021.2.1
2021.4.1
2022.2.1

 

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6611589
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/230690

More stories

Security Bulletin: IBM Robotic Process Automation is vulnerable to arbitrary code execution due to DevExpress SafeBinaryFormatter (CVE-2022-28684)

September 29, 2022 | High Severity

DevExpress is used by IBM Robotic Process Automatoin as part of the Dashboard and some commands. (CVE-2022-28684) ...read more


Security Bulletin: There is a vulnerability in moment.js used by IBM QRadar User Behavior Analytics (CVE-2022-24785)

September 29, 2022 | High Severity

There is a vulnerability in moment.js used by IBM QRadar User Behavior Analytics(UBA). This vulnerabiliity is addressed in UBA by upgrading to a version of moment.js that resolves the issue. ...read more


Security Bulletin: IBM Robotic Process Automation may be vulnerable to denail of service due to Newtonsoft.Json (IBM X-Force ID: 234366)

September 29, 2022 | High Severity

Newtonsoft.Json is used by IBM Robotic Process Automation as part of JSON processing for .NET. (IBM X-Force ID: 234366) ...read more