Medium Severity

Security Bulletin: Vulnerability in Spring Framework affects IBM Watson Explorer (CVE-2022-22971, CVE-2022-22968, CVE-2022-22970)

Share this post:

Spring Framework is used by IBM Watson Explorer Foundational and Analytical Components. IBM Watson Explorer has addressed the applicable CVE (CVE-2022-22971, CVE-2022-22968, CVE-2022-22970).

CVE(s): CVE-2022-22971, CVE-2022-22968, CVE-2022-22970

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Watson Explorer Deep Analytics Edition Foundational Components
12.0.0.0, 12.0.0.1
12.0.1,
12.0.2.0 – 12.0.2.2,
12.0.3.0 – 12.0.3.10
IBM Watson Explorer Deep Analytics Edition Analytical Components
12.0.0.0, 12.0.0.1
12.0.1,
12.0.2.0 – 12.0.2.2,
12.0.3.0 – 12.0.3.10
IBM Watson Explorer Deep Analytics Edition Foundational Components Annotation Administration Console
12.0.0.0, 12.0.0.1
12.0.1,
12.0.2.0 – 12.0.2.2,
12.0.3.0 – 12.0.3.10
Watson Explorer Foundational Components 11.0.0.3,
11.0.1,
11.0.2.0 – 11.0.2.14
IBM Watson Explorer Analytical Components 11.0.0.3,
11.0.1,
11.0.2.0 – 11.0.2.14
IBM Watson Explorer Foundational Components Annotation Administration Console 11.0.0.3,
11.0.1,
11.0.2.0 – 11.0.2.14

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6591061
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/226492
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/224374
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/226491

More stories

Security Bulletin: IBM SDK, Java Technology Edition, Security Update October 2021

June 27, 2022 | Medium Severity

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, 8* that are used by Rational Application Developer®. These issues were disclosed as part of the IBM Java SDK updates in October 2021. IBM 8 Fix SR7 FP5 (8.0.7.5). ...read more



Security Bulletin: IBM SDK, Java Technology Edition, Security Update October 2021

June 27, 2022 | Medium Severity

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, 8* that are used by Rational Application Developer®. These issues were disclosed as part of the IBM Java SDK updates in October 2021. IBM 8 Fix SR7 FP5 (8.0.7.5). ...read more