Medium Severity

Security Bulletin: IBM DataPower Gateway vulnerable to temporary DoS

Share this post:

IBM has addressed the CVEs

CVE(s): CVE-2022-22356, CVE-2022-22355

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM DataPower Gateway V10CD 10.0.2.0, 10.0.3.0, 10.0.4.0
IBM DataPower Gateway 10.0.1 10.0.1.0-10.0.1.6
IBM DataPower Gateway 2018.4.1 2018.4.1.0-2018.4.1.19

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6587100
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/220487
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/220486

More stories

Security Bulletin: IBM Tivoli Netcool/OMNIbus Transport Module Common Integration Library is affected by vulnerability in Netty (CVE-2022-24823)

June 29, 2022 | Medium Severity

Netty (CVE-2022-24823) is used by IBM Tivoli Netcool/OMNIbus Transport Module Common Integration Library as part of the webhook integration. The latest patch includes Netty 4.1.77.Final to fix the vulnerability. ...read more


Security Bulletin: Vulnerabilities in IBM Java Runtime affect IBM Spectrum Protect Backup-Archive Client, IBM Spectrum Protect for Space Management, and IBM Spectrum Protect for Virtual Environments (CVE-2021-35550, CVE-2021-35603)

June 29, 2022 | Medium Severity

Vulnerabilities in IBM® Runtime Environment Java™ were disclosed as part of the IBM Java SDK updates in October 2021. IBM® Runtime Environment Java™ is used by IBM Spectrum Protect Backup-Archive Client, IBM Spectrum Protect for Space Management, and IBM Spectrum Protect for Virtual Environments and may be affected by the below vulnerabilities (CVEs). ...read more


Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Tivoli Netcool Impact (CVE-2021-39038)

June 29, 2022 | Medium Severity

IBM WebSphere Application Server is shipped with IBM Tivoli Netcool Impact. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. ...read more