High Severity

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in FasterXML jackson-databind

Share this post:

IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of FasterXML jackson-databind.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
ICP – Discovery 2.0.0-2.2.0

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6416145

More stories

Security Bulletin: Multiple vulnerabilities in node.js may affect configuration editor used in IBM Business Automation Workflow and IBM Business Process Manager (BPM) – CVE-2020-1971, CVE-2020-8265, CVE-2020-8287

Mar 25, 2021 8:00 pm EDT | High Severity

Security vulnerabilities have been reported for Node.js. IBM Business Automation Workflow and IBM BPM include a stand-alone tool for editing configuration properties files that is based on IBM SDK for Node.js. ...read more


Security Bulletin: IBM Cloud Pak for Integration is vulnerable to Go vulnerabilities (CVE-2020-28851 and CVE-2020-28852)

Mar 24, 2021 8:01 pm EDT | High Severity

IBM Cloud Pak for Integration is vulnerable to Go vulnerabilities CVE-2020-28851 and CVE-2020-28852 with details of each below. ...read more


Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Security Directory Server

Mar 24, 2021 8:01 pm EDT | High Severity

There are vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped with IBM Security Directory Server(SDS). The issues were disclosed as part of the IBM SDK, Java Technology Edition Quarterly CPU - Apr 2020 which includes Oracle Apr 2020 CPU minus CVE-2020-2773 , Oracle Jul 2020 CPU plus one additional vulnerability, CVE-2020-2601 and CVE-2020-2590 (deferred from Oracle Jan 2020 CPU). ...read more