Critical Severity

Security Bulletin: March 2021 : Multiple vulnerabilities in IBM Java Runtime affect CICS Transaction Gateway

Share this post:

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Versions 7.0, 7.1 and 8.0 used by CICS Transaction Gateway. CICS Transaction Gateway has addressed the applicable CVEs.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM CICS Transaction Gateway 9.2.0.0-9.2.0.2
IBM CICS Transaction Gateway 9.1.0.0-9.1.0.3
IBM CICS Transaction Gateway 9.0.0.0-9.0.0.5
IBM CICS Transaction Gateway 8.1.0.0-8.1.0.5
IBM CICS Transaction Gateway 8.0.0.0-8.0.0.6

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6431193

More stories

Security Bulletin: IBM App Connect Enterprise v11 is affected by vulnerabilities in Node.js (CVE-2021-23358)

Jul 19, 2021 8:05 pm EDT | Critical Severity

IBM App Connect Enterprise v11 ships with Node.js for which vulnerabilities were reported and have been addressed. Vulnerability details are listed below. ...read more


Security Bulletin: IBM Security SOAR is using a component with known vulnerabilities – Handlebars.js ( CVE-2019-19919, CVE-2021-32820)

Jul 16, 2021 8:02 pm EDT | Critical Severity

The product includes an older version of Handlebars.js that may be identified and exploited with automated tools. ...read more


Security Bulletin: IBM Data Replication Affected by Multiple Vulnerabilities in IBM Java SDK

Jul 15, 2021 8:03 pm EDT | Critical Severity

Java SDK vulnerability findings in the IBM Java SDK packaged with this offering are addressed ...read more