Medium Severity
Security Bulletin: Vulnerabilities in IBM Java SDK affect IBM Spectrum Control (CVE-2020-2654, CVE-2020-2781, CVE-2020-2800)
Aug 20, 2020 8:00 pm EDT
Categorized: Medium Severity
Share this post:
There are vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped and used by IBM Spectrum Control . These issues were disclosed as part of the IBM SDK, Java Technology Edition Quarterly CPU January 2020 and April 2020.
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| IBM Spectrum Control | 5.3.1 – 5.3.7 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6261323
Security Bulletin: Access Control Security Vulnerability Exists in Dashboard User Interface of IBM Sterling B2B Integrator (CVE-2020-4646)
May 18, 2021 8:02 pm EDT | Medium Severity
IBM Sterling B2B Integrator has addressed the vulnerability. ...read more
Security Bulletin: IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0, and Liberty could allow a remote attacker to obtain sensitive information when a stack trace is returned in the browser.
May 18, 2021 8:01 pm EDT | Medium Severity
We are impacted as we ship WAS in docker image. As per security bulletin: https://www.ibm.com/support/pages/security-bulletin-information-disclosure-vulnerability-websphere-application-server-cve-2019-4441. For V9.0.0.0 through 9.0.5.1: · Upgrade to minimal fix pack levels as required by interim fix and then apply Interim Fix PH13983 --OR-- · Apply Fix Pack 9.0.5.2 or later (targeted availability 4Q2019). This has been shipped with 11.6.0.11 ...read more
Security Bulletin: Multiple Security Vulnerabilities in IBM WebSphere Application Server Affect IBM Sterling B2B Integrator
May 18, 2021 8:01 pm EDT | Medium Severity
IBM Sterling B2B Integrator has addressed the security vulnerabilities. ...read more