Lucene search
+L

19 matches found

ibm
ibm
added 2023/03/31 4:11 p.m.43 views

Security Bulletin: Multiple vulnerabilities in IBM WebSphere Application Server Liberty affect Cloud Pak System (CVE-2022-34165, CVE2021-39031)

Summary Multiple vulnerabilities in IBM WebSphere Application Server Liberty affect Cloud Pak System . Cloud Pak System has addressed these vulnerabilities. Vulnerability Details CVEID:CVE-2022-34165 DESCRIPTION: IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 and IBM WebSphere Applicatio...

8.8CVSS6.9AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/12/30 3:9 p.m.19 views

Security Bulletin: Vulnerabilities in IBM WebSphere Application Server Liberty affects IBM Cloud Application Business Insights CVE-2021-39031

Summary Vulnerabilities in IBM WebSphere Application Server Liberty affects IBM Cloud Application Business Insights CVE-2021-39031 Vulnerability Details CVEID:CVE-2021-39031 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through 22.0.0.1 could allow a remote authenticated attack...

8.8CVSS8.4AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/12/05 7:0 p.m.38 views

Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities

Summary IBM Cloud Transformation Advisor has addressed multiple security vulnerabilities. CVE-2021-39031, CVE-2020-28469 Vulnerability Details CVEID:CVE-2020-28469 DESCRIPTION: Node.js glob-parent module is vulnerable to a denial of service. By sending a specially-crafted request, a remote attack...

8.8CVSS8.1AI score0.04456EPSS
Exploits1Affected Software1
ibm
ibm
added 2022/12/02 7:43 p.m.58 views

Security Bulletin: IBM Cognos Controller has addressed multiple vulnerabilities

Summary This Security Bulletin addresses multiple vulnerabilities that have been remediated in IBM Cognos Controller 10.4.2 FP2 and 10.4.1 IF15 . There are multiple vulnerabilities in IBM® Runtime Environment Java™ used by IBM Cognos Controller. The applicable CVEs have been addressed by upgradin...

9.8CVSS10AI score0.99677EPSS
Exploits131Affected Software1
ibm
ibm
added 2022/10/07 4:1 p.m.24 views

Security Bulletin: Liberty for Java for IBM Cloud is vulnerable to LDAP Injection (CVE-2021-39031)

Summary Liberty for Java for IBM Cloud is vulnerable to LDAP injection. This has been addressed. Vulnerability Details CVEID:CVE-2021-39031 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through 22.0.0.1 could allow a remote authenticated attacker to conduct an LDAP injection. B...

8.8CVSS8.5AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/09/14 3:28 p.m.30 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server Liberty shipped with IBM Digital Business Automation Workflow family products

Summary WebSphere Application Server Liberty is shipped as part of the optional components Process Federation Server since 8.5.6, and User Management Service since 18.0.0.1 in IBM Business Automation Workflow and IBM Business Process Manager. Information about a security vulnerability affecting I...

8.1AI score0.02017EPSS
Exploits0Affected Software5
ibm
ibm
added 2022/07/18 9:58 p.m.31 views

Security Bulletin: Multiple vulnerabilities have been identified in IBM WebSphere Application Liberty profile shipped with IBM Robotic Process Automation

Summary WebSphere Application Server Liberty profile is shipped as a component of IBM Robotic Process Automation. Information about security vulnerabilities affecting IBM WebSphere Application Server Liberty profile have been published in a security bulletin. Vulnerability Details...

9.8CVSS9.9AI score0.42326EPSS
Exploits5Affected Software1
ibm
ibm
added 2022/05/16 8:18 a.m.61 views

Security Bulletin: IBM MQ Operator and IBM supplied MQ Advanced container images are vulnerable to multiple issues from Red Hat UBI packages and the IBM WebSphere Application Server Liberty

Summary Multiple issues were identified in Red Hat UBIubi8/ubi-minimal v8.5-x packages that were shipped with IBM MQ Operator and IBM supplied MQ Advanced container images. We have also identified an issue in the IBM WebSphere Application Server Liberty component that is packaged with IBM supplie...

9.8CVSS1.3AI score0.04729EPSS
Exploits3Affected Software1
ibm
ibm
added 2022/05/11 3:40 p.m.20 views

Security Bulletin: IBM MQ WebConsole and REST API are affected by CVE-2021-39031.

Summary An issue was identified within the IBM WebSphere Application Server Liberty profile that IBM MQ uses to provide web console and REST API functionality. Vulnerability Details CVEID: CVE-2021-39031 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through 22.0.0.1 could allow...

8.8CVSS1.3AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/05/02 12:8 p.m.19 views

Security Bulletin: A vulnerability in IBM WebSphere Application Server Liberty affects IBM Spectrum Scale (CVE-2021-39031)

Summary There is a vulnerability in IBM WebSphere Application Server Liberty, used by IBM Spectrum Scale, which could allow a remote attacker to cause a denial of service. Vulnerability Details CVEID: CVE-2021-39031 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through 22.0.0.1...

8.8CVSS0.9AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/04/26 7:55 p.m.78 views

Security Bulletin: Vulnerability in IBM WebSphere Application Server Liberty may affect IBM Spectrum Protect for Workstations Central Administration Console (CVE-2021-39031)

Summary IBM Spectrum Protect for Workstations Central Administration Console requires the dependent product IBM WebSphere Application Server Liberty. Information about a security vulnerability affecting IBM WebSphere Application Server Liberty has been published in a security bulletin. Refer to t...

8.8CVSS7AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/04/22 9:1 p.m.27 views

Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - IBM WebSphere Application Server (CVE-2021-39031)

Summary Security Vulnerabilities affect IBM Cloud Private - IBM WebSphere Application Server Vulnerability Details CVEID: CVE-2021-39031 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through 22.0.0.1 could allow a remote authenticated attacker to conduct an LDAP injection. By...

8.8CVSS0.8AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/04/22 2:21 p.m.24 views

Security Bulletin: Vulnerabilities exist in Watson Explorer for IBM WebSphere Application Server - Liberty (CVE-2021-39031)

Summary IBM Watson Explorer contains vulnerabilities that exist in Watson Explorer for IBM WebSphere Application Server - Liberty CVE-2021-39031. IBM Watson Explorer has addressed this vulnerability. Vulnerability Details CVEID: CVE-2021-39031 DESCRIPTION: IBM WebSphere Application Server - Liber...

8.8CVSS1AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/04/20 5:4 p.m.29 views

Security Bulletin: LDAP vulnerability in WebSphere Liberty Profile can affect IBM InfoSphere Global Name Management ENS (CVE-2021-39031)

Summary A vulnerability in the WebSphere Liberty Profile used in IBM InfoSphere Global Name Management GNM Enterprise Name Service ENS could allow a remote authenticated attacker to conduct an LDAP injection. This issue only affects ENS, a part of GNM installed by a small minority of GNM customer...

8.8CVSS0.6AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/04/07 3:23 a.m.40 views

Security Bulletin: IBM SPSS Analytic Server is vulnerable to LDAP Injection (CVE-2021-39031)

Summary IBM SPSS Analytic Server uses IBM WebSphere Application Server Liberty. An LDAP injection vulnerability in IBM WebSphere Application Server Liberty has been addressed Vulnerability Details CVEID: CVE-2021-39031 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through...

8.8CVSS0.7AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/03/22 7:4 a.m.16 views

Security Bulletin: IBM Transformation Extender Advanced is vulnerable to LDAP injection due to WebSphere Application Server Liberty (CVE-2021-39031)

Summary IBM Transformation Extender Advanced, previously known as IBM Standards Processing Engine, uses IBM WebSphere Application Server Liberty. An LDAP injection vulnerability in IBM WebSphere Application Server Liberty has been addressed. Vulnerability Details CVEID: CVE-2021-39031 DESCRIPTION...

8.8CVSS7.7AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/02/15 4:15 p.m.25 views

Security Bulletin: WebSphere Application Server Liberty, which is bundled with IBM Cloud Pak for Applications, is vulnerable to LDAP Injection (CVE-2021-39031)

Summary WebSphere Application Server Liberty, which is bundled with IBM Cloud Pak for Applications, is vulnerable to LDAP Injection CVE-2021-39031 Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products and...

8.8CVSS7.6AI score0.02017EPSS
Exploits0Affected Software1
ibm
ibm
added 2022/02/08 5:10 p.m.15 views

Security Bulletin: IBM WebSphere Application Server Liberty, which is bundled with IBM WebSphere Hybrid Edition, is vulnerable to LDAP Injection (CVE-2021-39031)

Summary IBM WebSphere Application Server Liberty, which is bundled with IBM WebSphere Hybrid Edition, is vulnerable to LDAP Injection CVE-2021-39031. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products and...

8.8CVSS7AI score0.02017EPSS
Exploits0Affected Software1
cve
cve
added 2022/01/25 4:25 p.m.89 views

CVE-2021-39031

CVE-2021-39031 affects IBM WebSphere Application Server Liberty, version range 17.0.0.3 through 22.0.0.1. A remote authenticated attacker could exploit an LDAP injection via a crafted request, potentially granting access to unauthorized resources. IBM X-Force ID: 213875. The CVSS vectors indicate...

8.8CVSS8.4AI score0.02017EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder