High Severity

Security Bulletin: Denial of Service vulnerability in OpenSSL may affect IBM Spectrum Protect Backup-Archive Client (CVE-2022-0778)

Share this post:

OpenSSL vulnerabilities were disclosed on March 15, 2022 by the OpenSSL Project. OpenSSL, used by the IBM Spectrum Protect Backup-Archive Client for network connections with NetApp services, has addressed the applicable CVE.

CVE(s): CVE-2022-0778

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Spectrum Protect Client 8.1.0.0-8.1.14.0

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6596399
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/221911

More stories

Security Bulletin: IBM MQ Explorer is vulnerable to an XML External Entity Injection (XXE) attack (CVE-2022-22489)

August 18, 2022 | High Severity

IBM MQ Explorer is vulnerable to an XML External Entity Injection (XXE) attack due to improper XML validation in the import Wizard. ...read more


Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands may be vulnerable to loss of confidentiality due to CVE-2022-35948 and CVE-2022-35949

August 18, 2022 | High Severity

Node.js module undici is used by IBM App Connect Enterprise Certified Container when testing API endpoints. IBM App Connect Enterprise Certified Container DesignerAuthoring operands that use the API testing capability may be vulnerable to loss of confidentiality if made to target an API endpoint via an untrusted proxy. This bulletin provides patch information to address the reported vulnerabilities CVE-2022-35948 and CVE-2022-35949 in Node.js module undici. ...read more


Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities

August 18, 2022 | High Severity

IBM Security Guardium has addressed the following vulnerabilities. ...read more