Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM3EE391D3F7E3059DA38FBDB115A8796287F51CCEA41695178D72B7146CB9FD41
HistoryDec 06, 2022 - 4:12 p.m.

Security Bulletin: A security vulnerability has been identified in IBM® SDK, Java™ Technology Edition shipped with IBM Tivoli Business Service Manager (CVE-2021-28167)

2022-12-0616:12:16
www.ibm.com
12

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

45.2%

JSON

Summary

IBM® SDK, Java™ Technology Edition is shipped as a component of IBM Tivoli Business Service Manager. Information about a security vulnerability affecting IBM® SDK, Java™ Technology Edition has been published in a security bulletin.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section

Affected Products and Versions

Affected Product(s) Version(s)
IBM Tivoli Business Service Manager 6.2.0

Remediation/Fixes

Principal Product and Version(s) Affected Supporting Product and Version
IBM Tivoli Business Service Manager 6.2.0 IBM strongly recommends addressing the vulnerability now by upgrading the Java SDK.

Security Bulletin: CVE-2021-28167 may affect IBM® SDK, Java™ Technology Edition

Workarounds and Mitigations

None

CPENameOperatorVersion
tivoli business service managereq6.2.0

Related

ibm 17
prion 1
osv 1
cve 1
aix 1
nessus 1
ibm
ibm
Security Bulletin: Vulnerability in IBM Java SDK and IBM Java Runtime affects Rational Business Developer
2022-12-06 17:14:26
Security Bulletin: A Security Vulnerability has been identified in the IBM Java SDK as shipped with IBM Security Verify Access.
2023-02-07 20:57:30
Security Bulletin: Multiple vulnerabilities in IBM Java - OpenJ9 affect IBM Tivoli System Automation for Multiplatforms (CVE-2021-28167)
2023-01-19 14:26:07
prion
prion
Design/Logic Flaw
2021-04-21 18:15:00
osv
osv
CVE-2021-28167
2021-04-21 18:15:08
cve
cve
CVE-2021-28167
2021-04-21 18:15:00
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2022-12-22 10:09:37
nessus
nessus
IBM Cognos Analytics 11.1.1 < 11.1.7 FP8 / 11.2.x < 11.2.4 FP3 / 12.0.x < 12.0.2 (7123154)
2024-04-25 00:00:00

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

45.2%

JSON
Related for 3EE391D3F7E3059DA38FBDB115A8796287F51CCEA41695178D72B7146CB9FD41
ibm17prion1osv1cve1aix1nessus1