Lucene search

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for August 2023

🗓️ 01 Sep 2023 19:42:56Reported by IBMType

ibm🔗 www.ibm.com👁 76 Views

Multiple security vulnerabilities addressed with IBM Cloud Pak for Business Automation iFixes for August 2023. Denial of service vulnerabilities in JDOM, gRPC, and snappy-java. Remote attacker could obtain sensitive information via gRPC

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
IBM Security Bulletins	Security Bulletin: Vulnerabilities in the jquery-1.10.0.js package affect Data Replication on Cloud Pak for Data	11 Feb 202516:24	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in jQuery affects IBM Process Mining (Multiple CVEs)	1 Feb 202321:57	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities found in third party libraries used by IBM® MobileFirst Platform	19 Apr 202317:26	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in jQuery affect watsonx.data	30 Jan 202511:08	–	ibm
IBM Security Bulletins	Security Bulletin: jQuery included in ITNM is vulnerable to Cross-site Scripting (XSS) attacks (multiple vulnerabilities)	5 Jan 202315:14	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Maximo Asset Management is affected by multiple vulnerabilities (CVE-2023-34455, CVE-2023-34454, CVE-2023-34453) in snappy-java.	26 Oct 202318:07	–	ibm
IBM Security Bulletins	Security Bulletin: Kafka nodes in IBM App Connect Enterprise and IBM Integration Bus are vulnerable to a denial of service due to snappy-java (CVE-2023-34453, CVE-2023-34455, CVE-2023-34454).	14 Aug 202308:42	–	ibm
IBM Security Bulletins	Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in snappy-java	28 Nov 202322:41	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Event Streams is vulnerable to denial of service attacks due to snappy-java (CVE-2023-34453, CVE-2023-34455, CVE-2023-34454)	29 Aug 202309:37	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling B2B Integrator affected by multiple vulnerabilities due to snappy-java	22 Feb 202416:22	–	ibm

Vulners

Node

ibm ibm_cloud_pak_for_automationMatch18.0.0

ibm ibm_cloud_pak_for_automationMatch18.0.1

ibm ibm_cloud_pak_for_automationMatch18.0.2

ibm ibm_cloud_pak_for_automationMatch19.0.1

ibm ibm_cloud_pak_for_automationMatch19.0.2

ibm ibm_cloud_pak_for_automationMatch19.0.3

ibm ibm_cloud_pak_for_automationMatch20.0.1

ibm ibm_cloud_pak_for_automationMatch20.0.2

ibm ibm_cloud_pak_for_automationMatch20.0.3

ibm ibm_cloud_pak_for_automationMatch21.0.1

ibm ibm_cloud_pak_for_automationMatch21.0.2

ibm ibm_cloud_pak_for_automationMatch21.0.3

ibm ibm_cloud_pak_for_automationMatch22.0.1

ibm ibm_cloud_pak_for_automationMatch22.0.2

ibm ibm_cloud_pak_for_business_automationMatch18.0.0

ibm ibm_cloud_pak_for_business_automationMatch18.0.1

ibm ibm_cloud_pak_for_business_automationMatch18.0.2

ibm ibm_cloud_pak_for_business_automationMatch19.0.1

ibm ibm_cloud_pak_for_business_automationMatch19.0.2

ibm ibm_cloud_pak_for_business_automationMatch19.0.3

ibm ibm_cloud_pak_for_business_automationMatch20.0.1

ibm ibm_cloud_pak_for_business_automationMatch20.0.2

ibm ibm_cloud_pak_for_business_automationMatch20.0.3

ibm ibm_cloud_pak_for_business_automationMatch21.0.1

ibm ibm_cloud_pak_for_business_automationMatch21.0.2

ibm ibm_cloud_pak_for_business_automationMatch21.0.3

ibm ibm_cloud_pak_for_business_automationMatch22.0.1

ibm ibm_cloud_pak_for_business_automationMatch22.0.2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Sep 2023 19:56Current

9.6High risk

Vulners AI Score9.6

CVSS27.5

CVSS37.5 - 9.8

EPSS0.59211

SSVC