Critical Severity
Security Bulletin: IBM Security Guardium is vulnerable to a remote code execution vulnerability in log4j2 component
December 15, 2021
Categorized: Critical Severity
Share this post:
IBM Security Guardium has fixed this vulnerability
CVE(s): CVE-2021-44228
Affected product(s) and affected version(s):
Affected Product(s) | Version(s) |
IBM Security Guardium | 10.6 |
IBM Security Guardium | 11.3 |
IBM Security Guardium | 11.4 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6527082
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/214921
Security Bulletin: Multiple vulnerabilities affect IBM® Db2® On Openshift and IBM® Db2® and Db2 Warehouse® on Cloud Pak for Data
June 29, 2022 | Critical Severity
IBM has released the following fix for IBM® Db2® On Openshift and IBM® Db2® and Db2 Warehouse® on Cloud Pak for Data in response to multiple vulnerabilities found in multiple components. ...read more
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js
June 29, 2022 | Critical Severity
IBM Watson Discovery for IBM Cloud Pak for Data contains vulnerable versions of Node.js modules used in Web clients. ...read more
Security Bulletin: OpenSSL for IBM i is vulnerable to command injection due to a flaw in c_rehash script (CVE-2022-1292)
June 28, 2022 | Critical Severity
OpenSSL is vulnerable to a command injection due to improper user validation in the c_rehash script as described in the vulnerability details section. IBM i has addressed the vulnerability in OpenSSL with a fix as described in the remediation/fixes section. ...read more