Critical Severity
Security Bulletin: jackson-databind vulnerability CVE-2020-24616 impacts IBM Aspera High-Speed Transfer Server and Aspera High-Speed Transfer Endpoint versions prior to V4.0
Dec 8, 2020 7:00 pm EST
Categorized: Critical Severity
Share this post:
Jackson-databind vulnerability CVE-2020-24616 impacts IBM Aspera High-Speed Transfer Server and Aspera High-Speed Transfer Endpoint versions prior to 4.0.0. The fix for this set of vulnerabilities was delivered in IBM Aspera High-Speed Transfer Server V4.0.0 and IBM Aspera High-Speed Transfer Endpoint V4.0.0.
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| IBM Aspera High-Speed Transfer Server | 3.9.6.2 and earlier |
| IBM Aspera High-Speed Transfer Endpoint | 3.9.6.2 and earlier |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6379794
Security Bulletin: IBM Cloud Private is vulnerable to Go vulnerabilities (CVE-2021-3114, CVE-2021-3115)
Feb 26, 2021 7:00 pm EST | Critical Severity
IBM Cloud Private is vulnerable to Go vulnerabilities ...read more
Security Bulletin: Security vulnerabilities in Go affect IBM Cloud Pak for Multicloud Management Hybrid GRC.
Feb 25, 2021 7:00 pm EST | Critical Severity
Security Bulletin: Security vulnerabilities in Go affect IBM Cloud Pak for Multicloud Management Hybrid GRC. ...read more
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM MessageGateway (CVE-2020-14803, CVE-2020-27221)
Feb 24, 2021 7:00 pm EST | Critical Severity
There are multiple vulnerabilities in IBM Runtime Environment Java Version 8.0 used by IBM MessageGateway These issues were disclosed as part of the IBM Java SDK updates in January, 2021. ...read more