High Severity

Security Bulletin: IBM Event Streams is affected by a Node.js http-proxy and lodash module vulnerabilities

Share this post:

IBM Event Streams is affected by a Node.js http-proxy and lodash module denial of service vulnerabilities

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Event Streams 2018.3.0
IBM Event Streams CDR

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6338477

More stories

Security Bulletin: A security vulnerability in Ruby on Rails affects IBM Cloud Pak for Multicloud Management Infrastructure Management

Jul 27, 2021 1:44 pm EDT | High Severity

A security vulnerability in Ruby on Rails affects IBM Cloud Pak for Multicloud Management Infrastructure Management. ...read more


Security Bulletin: GRUB2 as used by IBM QRadar SIEM is vulnerable to arbitrary code execution

Jul 27, 2021 8:11 am EDT | High Severity

GRUB2 as used by IBM QRadar SIEM is vulnerable to arbitrary code execution ...read more


Security Bulletin: IBM QRadar SIEM is vulnerable to an XML External Entity Injection (XXE) attack (CVE-2021-20399)

Jul 27, 2021 8:08 am EDT | High Severity

IBM QRadar SIEM is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. ...read more