High Severity

Security Bulletin: Multiple vulnerabilities have been identified in Netty shipped with IBM Tivoli Netcool/OMNIbus Transport Module Common Integration Library (CVE-2021-21290, CVE-2021-21295, CVE-2021-21409)

Share this post:

Netty is a dependency component shipped with the IBM Tivoli Netcool/OMNIbus Transport Module Common Integration Library for Message Bus Integration. Information about the security vulnerability affecting Netty has been published. (CVE-2021-21290, CVE-2021-21295, CVE-2021-21409)

CVE(s): CVE-2021-21290, CVE-2021-21295, CVE-2021-21409

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Tivoli Netcool/OMNIbus Integration – Transport Module Common Integration Library common-transportmodule-12_0 up to and including common-transportmodule-28_0

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6462247
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/197110
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/197999
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/199150

More stories

Security Bulletin: FasterXML Vulnerability in Jackson-Databind Affects IBM Sterling Connect:Direct File Agent (CVE-2018-7489)

Jul 23, 2021 8:13 pm EDT | High Severity

There is a vulnerability in FasterXML jackson-databind used by IBM Sterling Connect:Direct File Agent. IBM Sterling Connect:Direct File Agent has addressed the applicable CVE. ...read more


Security Bulletin: Apache Commons Configuration Vulnerability Affects IBM Sterling Connect:Direct File Agent (CVE-2020-1953)

Jul 23, 2021 8:11 pm EDT | High Severity

There is a vulnerability in Apache Commons used by IBM Sterling Connect:Direct File Agent. IBM Sterling Connect:Direct File Agent has addressed the applicable CVE. ...read more


Security Bulletin: IBM i2 iBase vulnerable to DLL highjacking (CVE-2020-4623)

Jul 23, 2021 8:00 pm EDT | High Severity

i2 iBase is vulnerable to DLL highjacking attacks. ...read more