Low Severity

Security Bulletin: IBM Event Streams affected by multiple Java SE security vulnerabilities

Jan 7, 2021 1:49 pm EST

Share this post:

IBM Event Streams is affected by multiple Java SE vulnerabilities. All Java components have been updated to deploy on the latest IBM SDK

CVE(s): CVE-2020-14792 , CVE-2020-14797 , CVE-2020-14781 , CVE-2020-14779 , CVE-2020-14798 , CVE-2020-14796 , CVE-2020-14782

Affected product(s) and affected version(s):

Affected Product(s)	Version(s)
IBM Event Streams	2019.2.1
IBM Event Streams	2019.4.x

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6395506
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190110
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190115
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190099
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190097
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190116
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190114
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190100

Low Severity

Security Bulletin: Version 6.4.6 of Node.js module nodemailer included in IBM Netcool Operations Insight 1.6.2.x has a security vulnerability

Search Posts

Resources

Feed for PSIRT Blog Posts

IBM Product Security Vulnerabilities

See information about: IBM Security Bulletins, IBM Security Vulnerability Management (PSIRT), Reporting a Security Issue, IBM Secure Engineering

Learn More

IBM Product Support Portal

Access IBM Product Support to: Subscribe to Notifications, Download Fixes & PTFs (Fix Central), Access the Directory of IBM Worldwide Contacts

See What's New

Helpful Information

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli System Automation Application Manager Oct 2020 CPU (CVE-2020-14779,CVE-2020-14796, CVE-2020-14797,CVE-2020-14798)

Mar 5, 2021 7:00 pm EST | Low Severity

There are multiple vulnerabilities in IBM SDK Java Technology Edition used by IBM Tivoli System Automation Application Manager. These issues were disclosed as part of the IBM Java SDK updates in Oct 2020. ...read more

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affects WebSphere Application Server January 2021 CPU that is bundled with IBM WebSphere Application Server Patterns

Mar 5, 2021 7:00 pm EST | Low Severity

There are multiple vulnerabilities in the IBM SDK Java Technology Edition that is shipped with IBM WebSphere Application Server. These issues were disclosed in the IBM Java SDK updates in January 2021. ...read more

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in TensorFlow

Feb 27, 2021 7:00 pm EST | Low Severity

IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of TensorFlow . ...read more

Low Severity

Security Bulletin: IBM Event Streams affected by multiple Java SE security vulnerabilities

Security Bulletin: Version 6.4.6 of Node.js module nodemailer included in IBM Netcool Operations Insight 1.6.2.x has a security vulnerability

Security Bulletin: IBM Event Streams is affected by multiple Node.js vulnerabilities

Search Posts

Archives

Resources

IBM Product Security Vulnerabilities

IBM Product Support Portal

Helpful Information

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli System Automation Application Manager Oct 2020 CPU (CVE-2020-14779,CVE-2020-14796, CVE-2020-14797,CVE-2020-14798)

Mar 5, 2021 7:00 pm EST | Low Severity

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affects WebSphere Application Server January 2021 CPU that is bundled with IBM WebSphere Application Server Patterns

Mar 5, 2021 7:00 pm EST | Low Severity

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in TensorFlow

Feb 27, 2021 7:00 pm EST | Low Severity