High Severity
Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to denial of service due to Go CVE-2022-23772
May 5, 2022
Categorized: High Severity
Share this post:
Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to denial of service due to Go CVE-2022-23772 with details below
CVE(s): CVE-2022-23772
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| Platform Navigator in IBM Cloud Pak for Integration (CP4I) | 2020.4.1 2021.1.1 2021.2.1 2021.3.1 2021.4.1 |
| Automation Assets in IBM Cloud Pak for Integration (CP4I) | 2020.4.1 2021.1.1 2021.2.1 2021.4.1 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6582425
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/219442
Security Bulletin: IBM Netezza for Cloud Pak for Data is vulnerable to CVE-2022-0811
August 9, 2022 | High Severity
IBM Netezza for Cloud Pak for Data is vulnerable to arbitrary code execution as root on the cluster node due to CVE-2022-0811 although severity is low. Vulnerability is addressed by upgrading OCP version to 4.8.42. ...read more
Security Bulletin: IBM Sterling Connect:Direct for Microsoft Windows is vulnerable to an unspecified vulnerability due to Google Gson (CVE-2022-25647)
August 9, 2022 | High Severity
There is a vulnerability in Google Gson used by Integrated File Agent in IBM Sterling Connect:Direct for Microsoft Windows. IBM Sterling Connect:Direct for Microsoft Windows has addressed the applicable CVE (CVE-2022-25647). ...read more
Security Bulletin: Automation Assets in IBM Cloud Pak for Integration is vulnerable to denial of service due to CVE-2022-24434
August 9, 2022 | High Severity
Automation Assets in IBM Cloud Pak for Integration is vulnerable to denial of service due to CVE-2022-24434 ...read more