Medium Severity

Security Bulletin: Multiple vulnerabilities may affect IBM® SDK, Java™ Technology Edition

Share this post:

Java SE issues disclosed in the Oracle July 2022 Critical Patch Update

CVE(s): CVE-2022-21541 , CVE-2022-21540

Affected product(s) and affected version(s):

7.0.0.0 – 7.0.11.10
8.0.0.0 – 8.0.7.10

For detailed information on which CVEs affect which releases, please refer to the IBM SDK, Java Technology Edition Security Vulnerabilities page.

NOTE: CVE-2022-21541 and CVE-2022-21540 affect IBM SDK, Java Technology Edition on Solaris, HP-UX and Mac OS only.

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6616533
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/231568
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/231567

More stories

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Apache Tomcat

November 30, 2022 | Medium Severity

IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of Apache Tomcat. ...read more


Security Bulletin: IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps is vulnerable to information disclosure and weaker security (CVE-2022-43901, CVE-2022-43900)

November 30, 2022 | Medium Severity

IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps could disclose sensitive information and contain weaker than expected security. This has been addressed. ...read more


Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Python

November 30, 2022 | Medium Severity

IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of Python. ...read more