Medium Severity

Security Bulletin: CVE-2020-2601 may affect IBM® SDK, Java™ Technology Edition

Share this post:

CVE-2020-2601 was disclosed as part of the Oracle January 2020 Critical Patch Update.

Affected product(s) and affected version(s):

7.0.0.0 – 7.0.10.65
7.1.0.0 – 7.1.4.65
8.0.0.0 – 8.0.6.11

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6256570

More stories

Security Bulletin: A security vulnerability has been identified in Apache CXF, which is a required product for IBM Tivoli Network Manager IP Edition (CVE-2020-13954)

Mar 24, 2021 8:00 pm EDT | Medium Severity

A security vulnerability has been disclosed in the Apache CXF library , which is installed as part of IBM Tivoli Network Manager version 4.2. Information about this vulnerability has been published in a security bulletin. ...read more


Security Bulletin: Multiple Vulnerabilities in IBM Java Runtime Affect IBM Sterling Connect:Direct for UNIX

Mar 23, 2021 8:02 pm EDT | Medium Severity

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Versions 8.0.6.0, 8.0.5.40, 8.0.5.35, 8.0.5.30, and 7.0.10.40, used by IBM Sterling Connect:Direct for UNIX. IBM Sterling Connect:Direct for UNIX has addressed the applicable CVEs. ...read more


Security Bulletin: IBM Kenexa LMS On Premise -[All] jQuery (Publicly disclosed vulnerability) – 180875

Mar 23, 2021 8:02 pm EDT | Medium Severity

We have identified that the IBM Kenexa LMS On Premise is affected by one or more security vulnerabilities. These have been addressed in LMS 6.1.0 version. ...read more