Medium Severity

Security Bulletin: Multiple vulnerabilities in middleware software affect IBM Cloud Pak for Automation

Share this post:

The vulnerabilities are related to IBM® SDK Java™ Technology Edition, Version 8 disclosed as part of the IBM Java SDK updates in April and July 2020, to the Node.js runtime and builtin modules, to other open source packages and to offering vulnerabilities discovered during security testing.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Cloud Pak for Automation 20.0.2
IBM Cloud Pak for Automation 20.0.1

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6338721

More stories

Security Bulletin: Multiple vulnerabilites affect IBM Engineering products.

Feb 26, 2021 7:01 pm EST | Medium Severity

There are multiple vulnerabilities that are used by IBM Jazz Team Server affecting the following IBM Jazz Team Server based Applications: Engineering Lifecycle Management (ELM), Global Configuration Management (GCM), IBM Engineering Requirements Management DOORS Next (DOORS Next), IBM Engineering Requirements Quality Assistant On-Premises (RQA On-Prem), IBM Engineering Lifecycle Optimization - Engineering Insights (ENI), IBM Engineering Workflow Management (EWM), IBM Engineering Systems Design Rhapsody - Design Manager (RDM), IBM Engineering Systems Design Rhapsody - Model Manager (RMM). ...read more



Security Bulletin: IBM Cloud Private is vulnerable to a WebSphere Application Server Liberty vulnerability (CVE-2020-4590)

Feb 26, 2021 7:01 pm EST | Medium Severity

IBM Cloud Private is vulnerable to a WebSphere Application Server Liberty vulnerability ...read more