High Severity
Security Bulletin: IBM OpenPages with Watson has addressed Apache Log4j vulnerability (CVE-2021-4104)
January 24, 2022
Categorized: High Severity
Share this post:
There is a vulnerability in the Apache Log4j open source library used by IBM OpenPages with Watson. This affects the IBM OpenPages logging framework. This vulnerability has been addressed.
CVE(s): CVE-2021-4104
Affected product(s) and affected version(s):
IBM OpenPages with Watson versions 8.1 through 8.2.0.3 (8.2.0.4 is not affected)
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6540688
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/215048
Security Bulletin: IBM Netezza as a Service is vulnerable to denial of service due to Golang net package (CVE-2021-33194, CVE-2021-44716, CVE-2021-31525)
June 28, 2022 | High Severity
Golang packages are used in IBM Netezza Software As A Service. Golang net sub module is vulnerable to denial of service. Vulnerability is addressed by upgrading Golang to version 1.17. ...read more
Security Bulletin: Zlib for IBM i is vulnerable to a denial of service attack due to memory corruption (CVE-2018-25032)
June 28, 2022 | High Severity
Zlib for IBM i is vulnerable to a denial of service attack due to memory corruption as described in the vulnerability details section. IBM i has addressed the vulnerability in Zlib with a fix as described in the remediation/fixes section. ...read more
Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities
June 27, 2022 | High Severity
IBM Cloud Transformation Advisor has addressed multiple security vulnerabilities including those in Node.js, Java SE and various other libraries. ...read more