High Severity

Security Bulletin: IBM Event Streams is affected by multiple Node.js vulnerabilities

Jan 7, 2021 7:02 pm EST

Categorized: High Severity

Share this post:

IBM Event Streams is affected by the following vulnerabilities in the included Node.js runtime that is used for the UI and Schema Registry

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Event Streams 2019.2.1

IBM Event Streams

2019.4.x

IBM Event Streams in IBM Cloud Pak for Integration

 10.x

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6395504


Previous Post

Security Bulletin: IBM DataPower Monitor is potentially vulnerable to an authentication bypass (CVE-2020-8172)

Next Post

Security Bulletin: IBM API Connect is vulnerable to denial of service (DoS) via PHP (CVE-2020-7068)
More stories

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 78.5 ESR + CVE-2020-26950) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF12 + ICAM2019.3.0 – 2020.2.0

Feb 25, 2021 7:00 pm EST | High Severity

Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-26950 ...read more

Security Bulletin: IBM Cloud Private is vulnerable to a Node.js lodash vulnerability (CVEID: 183560)

Feb 25, 2021 7:00 pm EST | High Severity

IBM Cloud Private is vulnerable to a Node.js lodash vulnerability ...read more

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 78.5 ESR + CVE-2020-15683) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF12 + ICAM2019.3.0 – 2020.2.0

Feb 25, 2021 7:00 pm EST | High Severity

Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-15683, CVE-2020-15969. ...read more