High Severity

Security Bulletin: Multiple vulnerabilities affect IBM Cloud Object Storage Systems (Jan 2022 V1)

Share this post:

Multiple vulnerabilities affect IBM Cloud Object Storage Systems. These vulnerabilities have been addressed in the latest ClevOS releases

CVE(s): CVE-2020-11868, CVE-2021-22946, CVE-2021-22924, CVE-2018-8956, CVE-2021-44832

Affected product(s) and affected version(s):

Affected Product(s) CVE's Version(s)
IBM Cloud Object Storage Systems CVE-2020-11868 3.16.2.64 or Prior Release
IBM Cloud Object Storage Systems CVE-2021-22946 3.16.2.64 or Prior Release
IBM Cloud Object Storage Systems CVE-2021-22924 3.16.2.64 or Prior Release
IBM Cloud Object Storage Systems CVE-2018-8956 3.16.2.64 or Prior Release
IBM Cloud Object Storage Systems CVE-2021-44832 3.16.2.64 or Prior Release

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6551054
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/180011
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/209452
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/206047
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/182430
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/216189

More stories

Security Bulletin: Vulnerabilities in vCenter affect IBM Cloud Pak System (CVE-2021-21980, CVE-2021-22049 )

August 13, 2022 | High Severity

Vulnerabilities have beein found in VMware vCenter. vCenter is shipped with Cloud Pak System. Cloud Pak System has addressed these vulnerabilities. ...read more


Security Bulletin: Vulnerability in polkit affects Cloud Pak System ( CVE-2021-4034)

August 13, 2022 | High Severity

Polkit is used by IBM Cloud System OS. This security bulletin service applies to IBM Cloud System , IBM Cloud System Software and IBM Cloud System Software Suite. ...read more


Security Bulletin: Vulnerability in IBM SAN Volume Controller, IBM Storwize, and IBM FlashSystem shipped with Cloud Pak System

August 13, 2022 | High Severity

Vulnerability found in IBM SAN Volume Controller, IBM Storwize, and IBM FlashSystem shipped with Cloud Pak System. Cloud Pak System has addressed this vulnerability. ...read more