High Severity

Security Bulletin: IBM Kenexa LMS On Premise – IBM SDK, Java Technology Edition Quarterly CPU – Apr 2019 – Includes Oracle Apr 2019 CPU (CVE-2019-2602)

Share this post:

We have identified that the IBM Kenexa LMS On Premise is affected by one or more security vulnerabilities. These have been addressed in LMS 6.1.0 version.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Kenexa LMS on premise LMS 6.1.0 and Below

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6212419

More stories

Security Bulletin: IBM QRadar Network Security is affected by Network Time Protocol (NTP) vulnerabilities (CVE-2020-11868, CVE-2020-13817)

Nov 27, 2020 7:00 pm EST | High Severity

IBM QRadar Network Security is affected by Network Time Protocol (NTP) vulnerabilities of denial of service by flaw in ntpd, relying on unauthenticated IPv4 time sources in ntpd. ...read more


Security Bulletin: Eclipse Jetty (Publicly disclosed vulnerability) affects Content Classifaction

Nov 27, 2020 7:00 pm EST | High Severity

Eclipse Jetty could allow a local authenticated attacker to gain elevated privileges on the system, caused by a race condition in the creation of the temporary subdirectory. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges. ...read more


Security Bulletin: A security vulnerability in Node.js bl module affects IBM Cloud Automation Manager.

Nov 26, 2020 7:01 pm EST | High Severity

A security vulnerability in Node.js bl module affects IBM Cloud Automation Manager. ...read more