Medium Severity

Security Bulletin: IBM i2 Analyst's Notebook Premium has an information disclosure vulnerability (CVE-2021-29784)

Share this post:

More information than is necessary is sometimes displayed in i2 Analyst’s Notebook Premium error dialogs.

CVE(s): CVE-2021-29784

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM i2 Analyze IBM i2 Analyze 4.3.1
IBM i2 Analyze IBM i2 Analyze 4.3.0
IBM i2 Analyze IBM i2 Analyze 4.3.2

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6474875
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/203168

More stories

Security Bulletin: PostgreSQL Vulnerability Affects IBM Sterling Connect:Direct for Microsoft Windows (CVE-2021-32029)

Sep 27, 2021 8:00 pm EDT | Medium Severity

There is a vulnerability in PostgreSQL 11 and 12 used by IBM Sterling Connect:Direct for Microsoft Windows. IBM Sterling Connect:Direct for Microsoft Windows has addressed the applicable CVE. ...read more


Security Bulletin: Multiple vulnerabilities in Apache HTTP Server affect IBM i

Sep 24, 2021 8:00 pm EDT | Medium Severity

Apache HTTP Server on IBM i is vulnerabile to the issues described in the vulnerability details section. IBM i has addressed the vulnerabilities in the Apache HTTP Server implementation as described in the remediation/fixes section. ...read more


Security Bulletin: Rational Asset Analyzer is affected by a WebSphere Application Server vulnerability.

Sep 23, 2021 8:00 pm EDT | Medium Severity

WebSphere Application Server Liberty used by Rational Asset Analyzer is vulnerable to an XML External Entity Injection (XXE) vulnerability. This has been addressed. ...read more