Medium Severity

Security Bulletin: Vulnerabilities in IBM Java SDK affect IBM Spectrum Control (CVE-2020-2654, CVE-2020-2781, CVE-2020-2800)

Share this post:

There are vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped and used by IBM Spectrum Control . These issues were disclosed as part of the IBM SDK, Java Technology Edition Quarterly CPU January 2020 and April 2020.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Spectrum Control 5.3.1 – 5.3.7

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6261323

More stories

Security Bulletin: IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0, and Liberty could allow a remote attacker to obtain sensitive information when a stack trace is returned in the browser.

May 18, 2021 8:01 pm EDT | Medium Severity

We are impacted as we ship WAS in docker image. As per security bulletin: https://www.ibm.com/support/pages/security-bulletin-information-disclosure-vulnerability-websphere-application-server-cve-2019-4441. For V9.0.0.0 through 9.0.5.1: · Upgrade to minimal fix pack levels as required by interim fix and then apply Interim Fix PH13983 --OR-- · Apply Fix Pack 9.0.5.2 or later (targeted availability 4Q2019). This has been shipped with 11.6.0.11 ...read more


Security Bulletin: Multiple Security Vulnerabilities in IBM WebSphere Application Server Affect IBM Sterling B2B Integrator

May 18, 2021 8:01 pm EDT | Medium Severity

IBM Sterling B2B Integrator has addressed the security vulnerabilities. ...read more