High Severity

Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoring has multiple vulnerabilities associated with the Go runtime (CVE-2021-29923, CVE-2021-31525, CVE-2021-33194, CVE-2021-33195, CVE-2021-33196, CVE-2021-33197, CVE-2021-33198)

Share this post:

The Go runtime is used by several components in IBM Cloud Pak for Multicloud Management Monitoring to interact with the operating system and provide utility functions.

CVE(s): CVE-2021-34558, CVE-2021-31525, CVE-2021-36221, CVE-2021-33198, CVE-2021-39293, CVE-2022-23772, CVE-2021-44716, CVE-2022-23773, CVE-2021-44717, CVE-2021-33197, CVE-2021-43565, CVE-2021-33196, CVE-2021-29923, CVE-2022-23806, CVE-2021-33194, CVE-2021-33195

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Cloud Pak for Multicloud Management Monitoring 2.0 – 2.3 Fix Pack 4

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6606299
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/205578
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/202709
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/207036
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/206604
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/220196
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/219442
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/216553
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/219443
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/216563
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/206603
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/219761
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/206602
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/207025
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/219444
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/202644
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/206601

More stories

Security Bulletin: A Kafka vulnerability affects IBM Operations Analytics Predictive Insights (CVE-2022-34917 )

November 29, 2022 | High Severity

Kafka vulnerability affects IBM Operations Analytics Predictive Insights [CVE-2022-34917]. Kafka is used by IBM Operations Analytics Predictive Insight in the data ingestion and processing services. The vulnerabilities have been addressed. ...read more


Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 102.4ESR) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF16 – 2022.4.0

November 29, 2022 | High Severity

Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2022-42932, CVE-2022-40956, CVE-2022-42928, CVE-2022-42929, CVE-2022-42927, CVE-2022-40962, CVE-2022-40958, CVE-2022-40960, CVE-2022-40957, CVE-2022-40959 ...read more


Security Bulletin: A vulnerability in IBM WebSphere Application Server Liberty profile affects IBM Operations Analytics Predictive Insights(CVE-2022-22393 CVE-2022-22476 CVE-2022-22475)

November 29, 2022 | High Severity

Websphere Application Server Liberty profile is used in the UI component of IBM Operations Analytics Predictive Insights. The vulnerabilities have been addressed. ...read more