Lucene search
IBM3752556374FFCF40F43FCF6E77B396B226E6571F1F190D62F2157B9A2068197BHistorySep 28, 2021 - 12:54 p.m.
Security Bulletin: A security vulnerability has been identified in IBM Jazz for Service Management shipped with Tivoli Netcool/OMNIbus WebGUI (CVE-2021-29831)
2021-09-2812:54:45
www.ibm.com
6
0.001 Low
EPSS
Percentile
50.0%
Summary
IBM Jazz for Service Management (JazzSM) is shipped as a component of Tivoli Netcool/OMNIbus WebGUI. Information about a security vulnerability affecting JazzSM has been published in a security bulletin.
Vulnerability Details
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Products and Versions
| Principal Product and Version(s) | Affected Supporting Product and Version |
|---|---|
| WebGUI 8.1.0 GA and FP | Jazz for Service Management v1.1.3.10 |
Remediation/Fixes
Please consult the security bulletin IBM Jazz for Service Management is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data (CVE-2021-29831) for vulnerability details and information about fixes.
Workarounds and Mitigations
None
| CPE | Name | Operator | Version |
|---|---|---|---|
| tivoli netcool/omnibus | eq | 8.1.0 |
Related
nvd
nvd
CVE-2021-29831
2021-09-21 16:15:08
cvelist
cvelist
CVE-2021-29831
2021-09-20 00:00:00
cve
cve
CVE-2021-29831
2021-09-21 16:15:08
cnvd
cnvd
IBM Jazz for Service Management XML External Entity Injection Vulnerability
2021-09-22 00:00:00
prion
prion
Xxe
2021-09-21 16:15:00
0.001 Low
EPSS
Percentile
50.0%
Related for 3752556374FFCF40F43FCF6E77B396B226E6571F1F190D62F2157B9A2068197B