Medium Severity

Security Bulletin: IBM Security Privileged Identity Manager is affected by WebSphere Application Server is vulnerable to a directory traversal vulnerability

Share this post:

IBM Security Privileged Identity Manager has addressed a WebSphere Application Server is vulnerable to a directory traversal vulnerability.

CVE(s): CVE-2021-20354

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
ISPIM 2.1.1
ISPIM 2.0.2
ISPIM 2.1.0

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6490893
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/194883

More stories

Security Bulletin: IBM App Connect Enterprise Certified Container may be vulnerable to regular expression denial of service due to a vulnerability in the Node.js validator module

Oct 20, 2021 8:02 pm EDT | Medium Severity

IBM App Connect Enterprise Certified Container may be vulnerable to a regular expression denial of service attack when parsing an Open API/Swagger document, due to a vulnerability in the Node.js validator module ...read more


Security Bulletin: Apache XML Beans Vulnerability Affects the B2B API of IBM Sterling B2B Integrator (CVE-2021-23926)

Oct 20, 2021 8:02 pm EDT | Medium Severity

IBM Sterling B2B Integrator has addressed the security vulnerability. ...read more


Security Bulletin: IBM App Connect Enterprise Certified Container may be vulnerable to denial of service due to CVE-2021-22918

Oct 20, 2021 8:02 pm EDT | Medium Severity

IBM App Connect Enterprise Certified Container may be vulnerable to denial of service due to CVE-2021-22918. This only affects Node.js runtime processes. ...read more