High Severity

Security Bulletin: Vulnerabilities in Node.js, IBM WebSphere Application Server Liberty, and OpenSSL affect IBM Spectrum Control

Share this post:

Vulnerabilities in Node.js, IBM WebSphere Application Server Liberty, and OpenSSL may affect IBM Spectrum Control.

CVE(s): CVE-2021-35517, CVE-2021-36090, CVE-2021-22939, CVE-2021-3712, CVE-2021-22931, CVE-2021-22930, CVE-2021-29842, CVE-2021-22940

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Spectrum Control 5.3.0.1-5.4.4

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6524930
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/205307
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/205310
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/207233
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/208073
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/207230
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/206473
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/205202
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/207520

More stories

Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to denial of service due to Go CVE-2021-43565

August 8, 2022 | High Severity

Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to denial of service due to Go CVE-2021-43565 with details below ...read more


Security Bulletin: IBM Workload Scheduler is potentially vulnerable to denial of service due to CVE-2022-0778 affecting OpenSSL component

August 8, 2022 | High Severity

OpenSSL vulnerability CVE-2022-0778 has been disclosed by the OpenSSL Project. OpenSSL is used by IBM Workload Schedulerfor secure communications between the components. ...read more


Security Bulletin: IBM Security SiteProtector System is affected by multiple Apache HTTP Server Vulnerabilities

August 8, 2022 | High Severity

Apache HTTP Server provides HTTP services for SiteProtector. IBM Security SiteProtector System has addressed the following vulnerabilities in an express update (CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-26377, CVE-2022-31813 and CVE-2022-30556) : ...read more