Medium Severity

Security Bulletin: Vulnerability inApache Log4j – CVE-2021-44832 may affect IBM Watson Assistant for IBM Cloud Pak for Data

Share this post:

A potential vulnerability inApache Log4j – CVE-2021-44832 has been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data.  Several components of IBM Watson Assistant for IBM Cloud Pak for Data use Log4j to log diagnostic data unrelated to customer input. Refer to details for additional information.

CVE(s): CVE-2021-44832

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
WA for ICP 1.5.0, 4.0.0, 4.0.2, 4.0.4

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6551436
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/216189

More stories