Medium Severity
Security Bulletin: IBM Tivoli Netcool/OMNIbus Transport Module Common Integration Library is affected by vulnerability in Netty (CVE-2022-24823)
June 29, 2022
Categorized: Medium Severity
Share this post:
Netty (CVE-2022-24823) is used by IBM Tivoli Netcool/OMNIbus Transport Module Common Integration Library as part of the webhook integration. The latest patch includes Netty 4.1.77.Final to fix the vulnerability.
CVE(s): CVE-2022-24823
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
|---|---|
| IBM Tivoli Netcool/OMNIbus Integration – Transport Module Common Integration Library | common-transportmodule-12_0 up to and including common-transportmodule-33_9 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6594755
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/225922
Security Bulletin: Vulnerability in the Node.js got module affects IBM Event Streams (CVE-2022-33987)
August 10, 2022 | Medium Severity
This security vulnerability affects the Node.js got module that is used by IBM Event Streams. ...read more
Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to remote access due to Go CVE-2022-29526
August 10, 2022 | Medium Severity
Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to remote access due to Go CVE-2022-29526 with details below ...read more
Security Bulletin: IBM Netezza for Cloud Pak for Data is vulnerable to injection attack due to urllib package in Python3 (CVE-2022-0391)
August 9, 2022 | Medium Severity
IBM Netezza for Cloud Pak for Data is vulnerable to injection attack due to improper input validation by the urllib.parse module from Python3. Vulnerability is addressed by upgrading Pytthon to version 3.9.7. ...read more