Medium Severity
Security Bulletin: IBM MQ for HP NonStop Server is affected by vulnerability CVE-2022-22316
May 12, 2022
Categorized: Medium Severity
Share this post:
An issue within MQ can allow required authorization checks to be omitted when applications are working with clustered queues. The issue is described by CVE-2022-22316.
CVE(s): CVE-2022-22316
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| IBM MQ for HPE NonStop | 8.1.0 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6585778
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/218276
Security Bulletin: IBM Maximo Asset Management and the IBM Maximo Manage application in IBM Maximo Application Suite are vulnerable to cross-site scripting (CVE-2022-22436)
July 5, 2022 | Medium Severity
IBM Maximo Asset Management and the IBM Maximo Manage application in IBM Maximo Application Suite are vulnerable to cross-site scripting. ...read more
Security Bulletin: IBM Maximo Asset Management and the IBM Maximo Manage application in IBM Maximo Application Suite are vulnerable to cross-site scripting (CVE-2022-22435)
July 5, 2022 | Medium Severity
IBM Maximo Asset Management and the IBM Maximo Manage application in IBM Maximo Application Suite are vulnerable to cross-site scripting. ...read more
Security Bulletin: IBM Event Streams is vulnerable to arbitrary code execution due to the Fabric8 Kubernetes client (CVE-2021-4178)
July 5, 2022 | Medium Severity
There is a vulnerability in the Fabric8 Kubernetes client. The library is used by IBM Event Streams. ...read more