Important: Red Hat Security Advisory: Red Hat support for Spring Boot 2.2.6.SP2 security update

🗓️ 23 Sep 2020 16:27:06Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 167 Views

Red Hat support for Spring Boot 2.2.6.SP2 security update including security and bug fixe

Reporter	Title	Published	Views	Family All 427
IBM Security Bulletins	Security Bulletin: Vulnerability in WebSphere Application Server Liberty affects IBM Z Development and Test Environment - Jan 2021	29 Jan 202114:27	–	ibm
IBM Security Bulletins	Security Bulletin: Due to use of Hibernate Validator version 6.1.2.Final IBM Tivoli Network Manager is vulnerable which allows attackers to bypass input sanitation (escaping, stripping) controls(CVE-2020-10693, CVE-2019-10219).	4 Jul 202212:53	–	ibm
IBM Security Bulletins	Security Bulletin: Hibernate Hibernate Validator could allow a remote attacker to bypass security restriction which affects watsonx.data	10 Mar 202518:10	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cognos Business Intelligence has addressed multiple vulnerabilities (Q12021)	29 Jan 202118:58	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Hibernate Validator affects WebSphere Application Server Liberty bundled with IBM WebSphere Application Server Patterns (CVE-2020-10693)	15 Oct 202016:29	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM WebSphere Appilcation Server and WebSphere Application Server Liberty affects IBM Engineering ELM products based on IBM Jazz technology.	12 Nov 202015:45	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to Using Components with Known Vulnerabilities	7 Oct 202022:53	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Hibernate Validator may affect IBM WebSphere Application Server Liberty shipped with IBM Digital Business Automation Workflow family products (CVE-2020-10693)	14 Sep 202215:28	–	ibm
IBM Security Bulletins	Security Bulletin: Rational Asset Analyzer is affected by a vulnerability in WebSphere Application Server Liberty (CVE-2020-10693)	23 Mar 202122:22	–	ibm
IBM Security Bulletins	Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2020-10693)	20 Jan 202109:05	–	ibm

Source	Link
access	www.access.redhat.com/documentation/en-us/red_hat_support_for_spring_boot/2.2/html-single/release_notes_for_spring_boot_2.2/index
access	www.access.redhat.com/jbossnetwork/restricted/listSoftware.html
access	www.access.redhat.com/security/updates/classification/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

14 May 2026 22:30Current

6.6Medium risk

Vulners AI Score6.6

CVSS 25

CVSS 3.15.3 - 7.5

EPSS0.92155

red hat support spring boot security update bug fixes openshift resteasy003870 cve-2020-10688 hibernate-validator cve-2020-10693 tomcat cve-2020-13935 cve-2020-13934 cvss score acknowledgments