Medium Severity

Security Bulletin: Multiple vulnerabilities may affect IBM® SDK, Java™ Technology Edition

Share this post:

Java SE issues disclosed in the Oracle October 2020 Critical Patch Update minus CVE-2020-14782. CVE-2020-14782 will be covered by an additional bulletin.

Affected product(s) and affected version(s):

7.0.0.0 – 7.0.10.70
7.1.0.0 – 7.1.4.70
8.0.0.0 – 8.0.6.16

Note 1: CVE-2020-14792 only applies to IBM SDK, Java Technology Edition on Solaris, HP-UX, and Mac OS.

Note 2: CVE-2020-14798 only applies to IBM SDK, Java Technology Edition on Windows.

For detailed information on which CVEs affect which releases, please refer to the IBM SDK, Java Technology Edition Security Vulnerabilities page.

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6370057

More stories

Security Bulletin: IBM Resilient SOAR is vulnerable to command injection (CVE-2021-20527)

Apr 18, 2021 8:00 pm EDT | Medium Severity

It was possible for a privileged user to inject malicious commands that could be executed as another user. This issue has been addressed. ...read more



Security Bulletin: IBM Security Guardium is affected by Oracle MySQL vulnerabilities

Apr 16, 2021 8:02 pm EDT | Medium Severity

IBM Security Guardium has fixed this vulnerability ...read more