Medium Severity

Security Bulletin: Node.js lodash vulnerability affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center) ( CVE-2019-10744)

Share this post:

Node.js lodash denial of service vulnerability affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center).

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
Spectrum Control 5.3.0 – 5.3.4

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1104753

More stories

Security Bulletin: IBM RackSwitch firmware products are affected by the following OpenSLL vulnerability

Feb 28, 2020 7:02 pm EST | Medium Severity

IBM RackSwitch firmware products are affected by the following OpenSLL vulnerability ...read more


Security Bulletin: Addressing the Sqlite Vulnerability CVE-2019-16168, CVE-2019-19242 and CVE-2019-19244

Feb 28, 2020 7:02 pm EST | Medium Severity

IBM Tivoli Composite Application Manager (ITCAM) for Transactions - Transaction Tracking has addressed the following SQLite vulnerability: ...read more


Security Bulletin: A vulnerability in Python affects IBM Operations Analytics Predictive Insights (CVE-2018-14647)

Feb 28, 2020 7:02 pm EST | Medium Severity

Python is used by IBM Operations Analytics Predictive Insights. IBM Operations Analytics Predictive Insights has addressed the applicable CVE. Note that the usage of Python within IBM Operations Analytics Predictive Insights is limited to the REST Mediation utility. If you do not use that utility then you are not affected by this bulletin. ...read more