Medium Severity

Security Bulletin: Multiple Vulnerabilities in Intel Firmware affect Cloud Pak System

Share this post:

Vulnerabilities in Intel firmware affect Cloud Pak System. Cloud Pak system nodes using Intel driver firmware recommended update.

CVE(s): CVE-2021-0197, CVE-2021-0198, CVE-2021-0199, CVE-2021-0200

Affected product(s) and affected version(s):

 

Affected Product(s) Version(s)
 IBM Cloud Pak Systems      v2.3
 SN550   FW
 SR630  FW
 X3550  FW

 

 

 

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6611963
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/213146
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/213149
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/213151
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/213152

More stories

Security Bulletin: IBM MQ is affected by multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 8

September 30, 2022 | Medium Severity

Multiple vulnerabilities were found with IBM® Runtime Environment Java™ Technology Edition, Version 8 which is shipped with IBM MQ and used for Java & JMS client, AMQP, MQTT, MFT & MQIPT functionality. ...read more


Security Bulletin: Vulnerability in the Node.js jose module affects IBM Event Streams (CVE-2022-36083)

September 30, 2022 | Medium Severity

This security vulnerability affects the Node.js jose module that is used by IBM Event Streams. ...read more


Security Bulletin: Due to use of IBM® SDK Java™ Technology Edition, IBM Virtualization Engine TS7700 is vulnerable to a data integrity threat (CVE-2022-21496)

September 30, 2022 | Medium Severity

IBM Virtualization Engine TS7700 is vulnerable to a data integrity threat (CVE-2022-21496) due to the use of IBM® SDK Java™ Technology Edition, Version 8. The SDK is used by the TS7700 to provide the Management Interface, to perform cache management, and to provide Transparent Cloud Tiering. This issue was disclosed as part of the IBM SDK Java Technology Edition update in April 2022. IBM Virtualization Engine TS7700 has addressed the applicable CVEs. ...read more