High Severity

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for June 2022

Share this post:

In addition to many updates of open source packages, the following security vulnerabilities are addressed with IBM Cloud Pak for Business Automation 21.0.2-IF012 and 21.0.3-IF010.

CVE(s): CVE-2021-43138, CVE-2022-24434, CVE-2022-23712, CVE-2022-25878

Affected product(s) and affected version(s):

 

Affected Product(s) Version(s) Status

IBM Cloud Pak for Business Automation

V21.0.3 – V21.0.3-IF009 affected
IBM Cloud Pak for Business Automation V21.0.2 – V21.0.2-IF011 affected
IBM Cloud Pak for Business Automation

V21.0.1 – V21.0.1-IF007
V20.0.1 – V20.0.3
V19.0.1 – V19.0.3
V18.0.0 – V18.0.2

affected

 

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6600749
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/223605
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/227085
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/228310
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/227327

More stories

Security Bulletin: Operations Dashboard is vulnerable to remote connection exploit by Go CVE-2022-30629

August 12, 2022 | High Severity

Operations Dashboard is vulnerable to remote connection exploit by Go CVE-2022-30629 with details below ...read more


Security Bulletin: Automation Assets in IBM Cloud Pak for Integration is vulnerable to denial of service due to CVE-2022-31129

August 10, 2022 | High Severity

Automation Assets in IBM Cloud Pak for Integration is vulnerable to denial of service due to CVE-2022-31129 with details below ...read more


Security Bulletin: Multiple security vulnerabilities has been identified in IBM® DB2® shipped with IBM PureData System for Operational Analytics

August 10, 2022 | High Severity

IBM® DB2® is shipped as a component of IBM PureData System for Operational Analytics. Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin (CVE-2022-22389, CVE-2022-22390, CVE-2022-25313, CVE-2022-25236, CVE-2022-25235, CVE-2022-25314, CVE-2022-25315). ...read more