High Severity

Security Bulletin: IBM Cloud Pak for Integration is vulnerable to Node.js lodash vulnerability (CVE-2020-28500)

Share this post:

IBM Cloud Pak for Integration is vulnerable to lodash vulnerability CVE-2020-28500 with details below.

CVE(s): CVE-2020-28500

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
Platform Navigator in IBM Cloud Pak for Integration (CP4I) 2020.4.1-0-eus
2020.4.1-1-eus

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6465181
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/196972

More stories

Security Bulletin: A security vulnerability in Ruby on Rails affects IBM Cloud Pak for Multicloud Management Infrastructure Management

Jul 27, 2021 1:44 pm EDT | High Severity

A security vulnerability in Ruby on Rails affects IBM Cloud Pak for Multicloud Management Infrastructure Management. ...read more


Security Bulletin: GRUB2 as used by IBM QRadar SIEM is vulnerable to arbitrary code execution

Jul 27, 2021 8:11 am EDT | High Severity

GRUB2 as used by IBM QRadar SIEM is vulnerable to arbitrary code execution ...read more


Security Bulletin: IBM QRadar SIEM is vulnerable to an XML External Entity Injection (XXE) attack (CVE-2021-20399)

Jul 27, 2021 8:08 am EDT | High Severity

IBM QRadar SIEM is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. ...read more