Medium Severity

Security Bulletin: Multiple vulnerabilities may affect IBM® SDK, Java™ Technology Edition

Dec 7, 2020 7:00 pm EST

Categorized: Medium Severity

Share this post:

Java SE issues disclosed in the Oracle October 2020 Critical Patch Update minus CVE-2020-14782. CVE-2020-14782 will be covered by an additional bulletin.

Affected product(s) and affected version(s):

7.0.0.0 – 7.0.10.70
7.1.0.0 – 7.1.4.70
8.0.0.0 – 8.0.6.16

Note 1: CVE-2020-14792 only applies to IBM SDK, Java Technology Edition on Solaris, HP-UX, and Mac OS.

Note 2: CVE-2020-14798 only applies to IBM SDK, Java Technology Edition on Windows.

For detailed information on which CVEs affect which releases, please refer to the IBM SDK, Java Technology Edition Security Vulnerabilities page.

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6370057


Previous Post

Security Bulletin: IBM® Db2® is vulnerable to an information disclosure and denial of service (CVE-2020-4414)

Next Post

Security Bulletin: IBM® Db2® is vulnerable to buffer overflow leading to a privileged escalation (CVE-2020-4363)
More stories

Security Bulletin: IBM Resilient SOAR is vulnerable to command injection (CVE-2021-20527)

Apr 18, 2021 8:00 pm EDT | Medium Severity

It was possible for a privileged user to inject malicious commands that could be executed as another user. This issue has been addressed. ...read more

Security Bulletin: Vulnerability with Apache Tika in Apache Solr affects IBM Operations Analytics – Log Analysis Analysis (CVE-2018-8017)

Apr 16, 2021 8:03 pm EDT | Medium Severity

There is a potential vulnerability in Apache Tika that affects Apache Solr ...read more

Security Bulletin: IBM Security Guardium is affected by Oracle MySQL vulnerabilities

Apr 16, 2021 8:02 pm EDT | Medium Severity

IBM Security Guardium has fixed this vulnerability ...read more