High Severity

Security Bulletin: Update Secure Gateway Client in IBM DataPower Gateway to address several CVEs

Share this post:

Update the version of Node used by Secure Gateway Client component to address the listed CVEs. This issue affects only users of the Secure Gateway Client.

CVE(s): CVE-2020-1971, CVE-2020-8265, CVE-2020-8287

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM DataPower Gateway V10 CD V10.0.2.0
IBM DataPower Gateway 10.0.1 10.0.0.0-10.0.1.3
IBM DataPower Gateway 2018.4.1.0-2018.4.1.16

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6482489
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/192748
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/194101
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/194100

More stories

Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Supplier Lifecycle Mgmt (CVE-2021-2329)

Oct 22, 2021 8:03 pm EDT | High Severity

An Oracle database server vulnerability has been addressed by IBM Emptoris Supplier Lifecycle Mgmt. ...read more


Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Supplier Lifecycle Mgmt (CVE-2021-2328)

Oct 22, 2021 8:03 pm EDT | High Severity

An Oracle database vulnerability has been addressed in IBM Emptoris Supplier Lifecycle Mgmt. ...read more


Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Strategic Supply Management Platform (CVE-2021-2351)

Oct 22, 2021 8:03 pm EDT | High Severity

An Oracle database server vulnerability has been addressed by IBM Emptoris Strategic Supply Management Platform. ...read more