High Severity

Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities

June 27, 2022

Categorized: High Severity

Share this post:

IBM Cloud Transformation Advisor has addressed multiple security vulnerabilities including those in Node.js, Java SE and various other libraries.

CVE(s): CVE-2022-0778, CVE-2022-30126, CVE-2022-21299 , CVE-2020-29582, CVE-2020-36518, CVE-2021-35561 , CVE-2022-25169, CVE-2022-21496 , CVE-2022-21434 , CVE-2022-21443 , CVE-2020-8908, CVE-2021-43138

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Cloud Transformation Advisor 2.0.1 – 3.1.0

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6598765
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/221911
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/226628
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/217594
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/196239
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/222319
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/211637
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/226627
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/224777
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/224718
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/224726
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/192996
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/223605


Previous Post

Security Bulletin: IBM SDK, Java Technology Edition, Security Update October 2021

Next Post

Security Bulletin: Zlib for IBM i is vulnerable to a denial of service attack due to memory corruption (CVE-2018-25032)
More stories

Security Bulletin: Automation Assets in IBM Cloud Pak for Integration is vulnerable to denial of service due to CVE-2022-31129

August 10, 2022 | High Severity

Automation Assets in IBM Cloud Pak for Integration is vulnerable to denial of service due to CVE-2022-31129 with details below ...read more

Security Bulletin: Multiple security vulnerabilities has been identified in IBM® DB2® shipped with IBM PureData System for Operational Analytics

August 10, 2022 | High Severity

IBM® DB2® is shipped as a component of IBM PureData System for Operational Analytics. Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin (CVE-2022-22389, CVE-2022-22390, CVE-2022-25313, CVE-2022-25236, CVE-2022-25235, CVE-2022-25314, CVE-2022-25315). ...read more

Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to multiple vulnerabilities

August 10, 2022 | High Severity

Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to multiple vulnerabilities with details below ...read more