Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM2CD17DC0F5FB53F1BAE387DDD08AC369F1B81F7FC4E0287C28986B41AF46135F
HistorySep 03, 2021 - 10:53 a.m.

Security Bulletin: A security vulnerability has been identified in Oracle Oct 2020 CPU for Java 8 shipped with IBM® Intelligent Operations Center (CVE-2020-14781)

2021-09-0310:53:51
www.ibm.com
31
oracle
java 8
ibm® intelligent operations center
cve-2020-14781
vulnerability
security fix.

EPSS

0.002

Percentile

61.5%

JSON

Summary

A security vulnerability has been identified in Oracle Oct 2020 CPU for Java 8 which is shipped with IBM® Intelligent Operations Center. Information about this security vulnerability affecting IBM® Intelligent Operations Center has been published and addressed the applicable CVEs.

Vulnerability Details

CVEID:CVE-2020-14781
**DESCRIPTION:**An unspecified vulnerability in Java SE related to the JNDI component could allow an unauthenticated attacker to obtain sensitive information resulting in a low confidentiality impact using unknown attack vectors.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/190099 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
Intelligent Operations Center (IOC) 5.1.0, 5.1.0.2, 5.1.0.3, 5.1.0.4, 5.1.0.6, 5.2, 5.2.1

Remediation/Fixes

The recommended solution is to apply an interim fix that contains the fix for this issue as soon as practical.

Download the IBM Intelligent Operations Center Version 5.2.2 is an upgrade to IBM Intelligent Operations Center Version 5.1 through IBM Intelligent Operations Center Version 5.2 from the following link:

IBM Intelligent Operations Center Version 5.2.2

Installation instructions for the fix are included in the readme document that is in the fix package.

Workarounds and Mitigations

None

Related

ibm 97
veracode 1
f5 1
nvd 1
cve 1
debiancve 1
prion 1
cvelist 1
vulnrichment 1
ubuntucve 1
alpinelinux 1
redhatcve 1
nessus 42
redhat 12
openvas 12
oraclelinux 5
amazon 3
centos 3
mageia 1
ubuntu 2
fedora 4
suse 1
osv 4
kaspersky 1
debian 1
ibm
ibm
Security Bulletin: IBM DataQuant is vulnerable to CVE-2020-14781
2021-04-02 22:14:43
Security Bulletin: IBM SDK Java Quarterly CPU Oct 2020 Vulnerabilities Affect IBM Transformation Extender
2021-04-20 12:58:27
Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2020-14781)
2021-07-08 18:00:18
veracode
veracode
Information Disclosure
2020-10-23 08:58:09
f5
f5
K000135507 : Java vulnerabilities CVE-2020-14781
2023-07-17 00:00:00
nvd
nvd
CVE-2020-14781
2020-10-21 15:15:18
cve
cve
CVE-2020-14781
2020-10-21 15:15:18
debiancve
debiancve
CVE-2020-14781
2020-10-21 15:15:18
prion
prion
Design/Logic Flaw
2020-10-21 15:15:00
cvelist
cvelist
CVE-2020-14781
2020-10-21 14:04:25
vulnrichment
vulnrichment
CVE-2020-14781
2020-10-21 14:04:25
ubuntucve
ubuntucve
CVE-2020-14781
2020-10-21 00:00:00
alpinelinux
alpinelinux
CVE-2020-14781
2020-10-21 15:15:18
redhatcve
redhatcve
CVE-2020-14781
2020-10-20 21:16:54
nessus
nessus
RHEL 8 : java-1.8.0-ibm (RHSA-2021:0736)
2021-03-05 00:00:00
RHEL 7 : java-1.8.0-ibm (RHSA-2021:0717)
2021-03-05 00:00:00
RHEL 7 : java-1.7.1-ibm (RHSA-2020:5586)
2020-12-18 00:00:00
redhat
redhat
(RHSA-2020:5586) Moderate: java-1.7.1-ibm security update
2020-12-16 14:59:17
(RHSA-2021:0717) Critical: java-1.8.0-ibm security update
2021-03-03 20:42:35
(RHSA-2021:0736) Critical: java-1.8.0-ibm security update
2021-03-04 17:36:10
openvas
openvas
Huawei EulerOS: Security Advisory for java-1.8.0-openjdk (EulerOS-SA-2021-1982)
2021-06-29 00:00:00
Oracle Java SE Security Update (cpuoct2020 - 01) - Windows
2020-10-21 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:3932-1)
2021-04-19 00:00:00
oraclelinux
oraclelinux
java-1.8.0-openjdk security update
2020-10-27 00:00:00
java-11-openjdk security and bug fix update
2020-10-22 00:00:00
java-11-openjdk security update
2020-10-23 00:00:00
amazon
amazon
Medium: java-1.8.0-openjdk
2021-01-05 23:34:00
Medium: java-1.8.0-openjdk
2021-01-12 22:51:00
Medium: java-1.8.0-openjdk
2020-12-16 20:31:00
centos
centos
java security update
2020-11-09 13:12:26
java security update
2020-11-06 21:58:30
java security update
2020-11-06 21:59:28
mageia
mageia
Updated java-1.8.0-openjdk packages fix security vulnerabilities
2020-11-14 00:20:36
ubuntu
ubuntu
OpenJDK regressions
2020-11-12 00:00:00
OpenJDK vulnerabilities
2020-10-27 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: java-11-openjdk-11.0.9.11-0.fc32
2020-10-31 02:02:10
[SECURITY] Fedora 33 Update: java-1.8.0-openjdk-1.8.0.272.b10-0.fc33
2020-10-26 01:07:14
[SECURITY] Fedora 32 Update: java-1.8.0-openjdk-1.8.0.272.b10-0.fc32
2020-10-31 02:02:10
suse
suse
Security update for java-11-openjdk (moderate)
2020-11-21 00:00:00
osv
osv
openjdk-8 - security update
2020-10-23 00:00:00
openjdk-8, openjdk-lts regressions
2020-11-12 21:58:30
openjdk-11 - security update
2020-10-25 00:00:00
kaspersky
kaspersky
KLA11985 Multiple vulnerabilities in Oracle Java SE
2020-10-20 00:00:00
debian
debian
[SECURITY] [DLA 2412-1] openjdk-8 security update
2020-10-30 09:23:09

EPSS

0.002

Percentile

61.5%

JSON
Related for 2CD17DC0F5FB53F1BAE387DDD08AC369F1B81F7FC4E0287C28986B41AF46135F
ibm97veracode1f51nvd1cve1debiancve1prion1cvelist1vulnrichment1ubuntucve1alpinelinux1redhatcve1nessus42redhat12openvas12oraclelinux5amazon3centos3mageia1ubuntu2fedora4suse1osv4kaspersky1debian1