Medium Severity

Security Bulletin: IBM App Connect Enterprise Certified Container may be vulnerable to Denial of Service via CVE-2021-33196

Share this post:

IBM App Connect Enterprise Certified Container may be vulnerable to Denial of Service via CVE-2021-33196. This affects the Operator itself and the ACE server image

CVE(s): CVE-2021-33196

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
App Connect Enterprise Certified Container 1.0 with Operator
App Connect Enterprise Certified Container 1.1 with Operator
App Connect Enterprise Certified Container 1.2 with Operator
App Connect Enterprise Certified Container 1.3 with Operator
App Connect Enterprise Certified Container 1.4 with Operator
App Connect Enterprise Certified Container 1.5 with Operator

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6488895
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/206602

More stories

Security Bulletin: Vulnerabilities in the Linux kernel affect IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem V9000 products

Oct 14, 2021 8:03 pm EDT | Medium Severity

Multiple vulnerabilities in the Linux kernel could allow an authenticated attacker to obtain sensitive information. ...read more


Security Bulletin: Vulnerability in Apache Tomcat affects IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem V9000 products

Oct 14, 2021 8:01 pm EDT | Medium Severity

A vulnerability in Apache Tomcat affects the product's management GUI, potentially allowing an attacker to poison the web cache, bypass web application firewall protection, and conduct XSS attacks. The Command Line Interface is unaffected. ...read more


Security Bulletin: Multiple Samba vulnerability issues in IBM Storwize V7000 Unified

Oct 14, 2021 8:01 pm EDT | Medium Severity

IBM Storwize V7000 Unified is shipped with Samba, for which a fix is available for security vulnerabilities. ...read more