Medium Severity

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Security Guardium

Share this post:

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8 used by IBM Security Guardium. These issues were disclosed as part of the IBM Java SDK updates in October 2020.

CVE(s): CVE-2020-14779 , CVE-2020-14792 , CVE-2020-14796 , CVE-2020-14797 , CVE-2020-14798

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Security Guardium 10.5
IBM Security Guardium 10.6
IBM Security Guardium 11.0
IBM Security Guardium 11.1
IBM Security Guardium 11.2
IBM Security Guardium 11.3

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6443713
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190097
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190110
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190114
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190115
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/190116

More stories

Security Bulletin: IBM Security Privileged Identity Manager is affected by WebSphere Application Server is vulnerable to a directory traversal vulnerability

Sep 20, 2021 8:03 pm EDT | Medium Severity

IBM Security Privileged Identity Manager has addressed a WebSphere Application Server is vulnerable to a directory traversal vulnerability. ...read more


Security Bulletin: IBM® Db2® could allow a local user to read and write specific files due to weak file permissions (CVE-2020-4976)

Sep 20, 2021 8:02 pm EDT | Medium Severity

IBM® Db2® could allow a local user to read and write specific files due to weak file permissions ...read more


Security Bulletin: The PowerVM hypervisor is vulnerable to a specially crafted sequence of hypervisor calls from a partition that can lead to a system crash

Sep 20, 2021 8:02 pm EDT | Medium Severity

An attacker that gains total control of a virtual machine running on the PowerVM hypervisor could issue a specially crafted sequence of hypervisor calls that will lead to a system crash and and an outage of all virtual machines running on the same system ...read more