High Severity

Security Bulletin: Multiple security vulnerabilities have been identified in Elasticsearch shipped with IBM Tivoli Netcool Impact

July 6, 2022

Share this post:

Elasticsearch is shipped with IBM Tivoli Netcool Impact, Information about multiple security vulnerabilities affecting elasticsearch has been published in a security bulletin.

CVE(s): CVE-2020-7020, CVE-2019-7611, CVE-2018-3824, CVE-2019-7614, CVE-2020-7021, CVE-2018-3823

Affected product(s) and affected version(s):

Affected Product(s)	Version(s)
IBM Tivoli Netcool Impact	7.1.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6601523
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190409
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/159335
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/150286
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/164510
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/196943
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/150287

High Severity

Security Bulletin: A security vulnerability has been identified in jackson-databind shipped with IBM Tivoli Netcool Impact (CVE-2020-36518, WS-2021-0616)

Search Posts

Resources

Feed for PSIRT Blog Posts

IBM Product Security Vulnerabilities

See information about: IBM Security Bulletins, IBM Security Vulnerability Management (PSIRT), Reporting a Security Issue, IBM Secure Engineering

Learn More

IBM Product Support Portal

Access IBM Product Support to: Subscribe to Notifications, Download Fixes & PTFs (Fix Central), Access the Directory of IBM Worldwide Contacts

See What's New

Helpful Information

Security Bulletin: Vulnerabilities in vCenter affect IBM Cloud Pak System (CVE-2021-21980, CVE-2021-22049 )

August 13, 2022 | High Severity

Vulnerabilities have beein found in VMware vCenter. vCenter is shipped with Cloud Pak System. Cloud Pak System has addressed these vulnerabilities. ...read more

Security Bulletin: Vulnerability in polkit affects Cloud Pak System ( CVE-2021-4034)

August 13, 2022 | High Severity

Polkit is used by IBM Cloud System OS. This security bulletin service applies to IBM Cloud System , IBM Cloud System Software and IBM Cloud System Software Suite. ...read more

Security Bulletin: Vulnerability in IBM SAN Volume Controller, IBM Storwize, and IBM FlashSystem shipped with Cloud Pak System

August 13, 2022 | High Severity

Vulnerability found in IBM SAN Volume Controller, IBM Storwize, and IBM FlashSystem shipped with Cloud Pak System. Cloud Pak System has addressed this vulnerability. ...read more

High Severity

Security Bulletin: Multiple security vulnerabilities have been identified in Elasticsearch shipped with IBM Tivoli Netcool Impact

Security Bulletin: A security vulnerability has been identified in jackson-databind shipped with IBM Tivoli Netcool Impact (CVE-2020-36518, WS-2021-0616)

Security Bulletin: Multiple security vulnerabilities fixed in IBM Security Verify Access Appliance (CVE-2022-22465, CVE-2022-22463, CVE-2022-22464)

Search Posts

Archives

Resources

IBM Product Security Vulnerabilities

IBM Product Support Portal

Helpful Information

Security Bulletin: Vulnerabilities in vCenter affect IBM Cloud Pak System (CVE-2021-21980, CVE-2021-22049 )

August 13, 2022 | High Severity

Security Bulletin: Vulnerability in polkit affects Cloud Pak System ( CVE-2021-4034)

August 13, 2022 | High Severity

Security Bulletin: Vulnerability in IBM SAN Volume Controller, IBM Storwize, and IBM FlashSystem shipped with Cloud Pak System

August 13, 2022 | High Severity