High Severity

Security Bulletin: Multiple security vulnerabilities has been identified in IBM® DB2® shipped with IBM PureData System for Operational Analytics

Share this post:

IBM® DB2® is shipped as a component of IBM PureData System for Operational Analytics. Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin (CVE-2022-22389, CVE-2022-22390, CVE-2022-25313, CVE-2022-25236, CVE-2022-25235, CVE-2022-25314, CVE-2022-25315).

CVE(s): CVE-2022-22389, CVE-2022-22390, CVE-2022-25313, CVE-2022-25236, CVE-2022-25235, CVE-2022-25314, CVE-2022-25315

Affected product(s) and affected version(s):

IBM PureData System for Operational Analytics V1.1 (A1801)

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6611649
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/221970
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/221973
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/219947
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/219784
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/219782
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/219946
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/219945

More stories

Security Bulletin: IBM Robotic Process Automation is vulnerable to arbitrary code execution due to DevExpress SafeBinaryFormatter (CVE-2022-28684)

September 29, 2022 | High Severity

DevExpress is used by IBM Robotic Process Automatoin as part of the Dashboard and some commands. (CVE-2022-28684) ...read more


Security Bulletin: There is a vulnerability in moment.js used by IBM QRadar User Behavior Analytics (CVE-2022-24785)

September 29, 2022 | High Severity

There is a vulnerability in moment.js used by IBM QRadar User Behavior Analytics(UBA). This vulnerabiliity is addressed in UBA by upgrading to a version of moment.js that resolves the issue. ...read more


Security Bulletin: IBM Robotic Process Automation may be vulnerable to denail of service due to Newtonsoft.Json (IBM X-Force ID: 234366)

September 29, 2022 | High Severity

Newtonsoft.Json is used by IBM Robotic Process Automation as part of JSON processing for .NET. (IBM X-Force ID: 234366) ...read more